• 1 Post
  • 6 Comments
Joined 1Y ago
cake
Cake day: Jul 26, 2023

help-circle
rss

I already have a constant ip on the vpn I still don’t get it, sorry


How would I use that in this situation? I don’t get it. I already have a vpn set up to communicate between the two devices, and have been successfully running multiple services in this configuration for about a month. It’s just XMPP that I’m having trouble with.


The vps communicates with the rpi through a vpn.

I have not heard of duck dns nor lstio, but I’ll check it out when I get home.


Running ejabberd behind a reverse proxy
Hi all, As the title suggests, I'm trying to run an ejabberd (xmpp) server behind an nginx reverse proxy. The reason is, I want to be able to run the server on my raspberry pi at home, but have people connect to it through my VPS, which is running nginx. This would be nice because I don't need a static ip and I don't have to leak my ip address. I have looked this up, but have not found an answer that works exactly for my use case. My current nginx configuration looks like this: ``` stream { upstream xmppserver { server 10.8.0.3:5223; } upstream turnserver { server 10.8.0.3:3478; } map $ssl_preread_alpn_protocols $upstream { "xmpp-client" xmppserver; "stun.turn" turnserver; "stun.nat-discovery" turnserver; } server { listen 6969; proxy_pass $upstream; proxy_protocol on; } } ``` And I have a DNS entry telling XMPP clients to contact my server at port 6969 (this was just for testing): ![](https://discuss.tchncs.de/pictrs/image/8566e425-c33e-40ad-b94b-2359653d05d3.png) I would also need to figure out how to supply ejabberd with the correct certificates for the domain. Since it's running on a different computer than the reverse proxy, would I have to somehow copy the certificate over every time it has to be renewed? Thank you for your help.
fedilink

I use a self-hosted vpn, because I don’t want to expose anything to the internet. The ones I do want to, I haven’t set up yet since it would require reinstalling my pi. But I do have a reverse proxy set up on a vps that I will use once I get around to doing it.


Nextcloud notes is really nice.


You can set exceptions to the cookie deletion in the security settings. I personally have everything I use frequently (invidious and stuff) to keep the login cookies. Or you can just completely disable that feature.