Okay, so if that’s your actual DNS Server, can you confirm that it works? dig @yourdns debian.org, for example. Afterwards try to use the default DNS of your system dig debian.org. If both works, your DNS config should be fine. Try a curl debian.org -v too.

debian.org is just a random domain for this, use whatever you want. I don’t see anything badly configured so far.

Okay, no external software for DNS management present here. Is that ip a working DNS Server? Is it your server itself perhaps?

From the output, you don’t have any routing rules for your machine that block outgoing traffic. The dig command confirms that you can talk to servers. 9.9.9.9 is a common DNS Server. Based off of this, it seems like your problem is that your system has a bad DNS configuration (it’s always DNS).

Can you parhaps cat /etc/resolv.con? This file normally contains the used DNS servers for Linux systems, unless using special software.

Can you dig @9.9.9.9? If so, its certainly DNS. If it’s not DNS, perhaps try to check your iptables iptables -L && iptables -t nat -L.

Technically, they are, as they also deny them the option to distribute books and food.

“Books” and “food” are not someone’s intellectual property so that’s okay. If brand A were to sell “BRAND B SUPER FOOD” (let’s assume this is a known brand of Brand B), that would very much be problematic.

In the case of books, if you wrote the “super personal top secret book” and a library somehow got a copy without your permission and made it public, you’d be pissed too and they’d deny your right to distribute or not distribute.

I only use headscale. It just works and does not complain.

Don’t host services with termux, it’s not made for that and nobody checks for termux related things. If you really want to host on an android device, look into chroot environments or virtualization. Generally, avoid hosting on android, in my experience at least.

Damn they screwed up big this time

This guy is completely mad

It also breaks jellyfin on firefox

I use authentik. The login flow is a little weird I agree, my password manager doesn’t like it too. Besides that, from the ones I used it’s definitely the most stable and developed (I was using authelia before).

I can’t quite figure out how to use it with proxy auth.

I use audiobookshelf and it’s amazing. So polished and just works.

What was the topic of the article? Can you link it?

Fron the looks of it: Homelabber discovers that cloud computing exists

Oh come on!

Just a typo. Fixed it

Yeah that one got me too. Rust has tons of c libs wrapped in safe rust.

It’s good

That one is not that complicated if you don’t think about the math. It’s basically just if we interpret the float as int and add a magic number we have a good estimation.

From what I remember at least, it’s been a little while since I implemented it.

Netcup is cheap and reliable. Based in Germany, I host my personal website and a few tools with one of their VPS. Never had a problem with them and the price is good.

Edit: If you’re looking for web hosting, they offer that too alternatively.

tar -xzvf archive.tar.gz

eXtract Zhe Vucking File

Personally, I’ve just set my devices to only sync in my LAN, just in case.

I’ll be seeding this too then.

There is a rudimentary git server with federation support as a POC, but it’s not there yet. I’m Selfhosting Forgejo, it works really well, but AP integration isn’t really in it yet.

Iirc coffee addiction worsens sleep quality and costs money. It’s not like blocking your body from being tired can really be beneficial.

My issue is that I use a self signed CA, there is some progress in that area, but last time I checked not something usable on my device

Neovim with kitty gang

Sounds good, I’ll take a look too

No need to update my screen when nothing happens. I use neovim, the pinnacle of editing.

Yeah, but you’d need to own a public domain and use it for your LAN, no? Or would it be possible to get a letsencrypt certificate for example.local?

Yeah of course, that’s what I’m doing anyways, but the purpose of a firewall would be defense in depth, even is something were to be published, the firewall got it.

I can configure the containers in ways that don’t require ports to be published for the real network, but that’s always possible. It would still be nice to have a firewall that can block even those containers that try to publish their ports to the whole (real) network.

They are Only in my docker bridge networks and have a few published ports

For my homelab, and I’ll only host OSS

Interesting, I might have to read up on that next time. Thanks

I’m using a self signed CA for my home network with caddy. You just set it up to use a ca once and afterwards it just works. So yeah, really easy.

Iirc you can upload your own certificates and keys in npm, you’ll just have to manage the CA manually or with some other tool.

I remember trying with ufw and the docker ports were still open. Iirc I’ve read somewhere that docker and ufw both use the same underlying software, so ufw cannot block docker (IP tables?)

Very cool and il jealous but I’m curious: how big was the updgrade to your power consumption?

What is a good firewall that can also block ports published with docker? I’d need it to run on the same host.

I hosted NPM in two servers for some time, I had it break too often and could not set custom configs easily. I switched to caddy and could not be happier.

When using caddy, you don’t even need to think about letsencrypt, unless you want to disable it in favor of something else.

Hybrid cat cage