• 0 Posts
  • 30 Comments
Joined 1Y ago
cake
Cake day: Sep 08, 2023

help-circle
rss

Another related question. Is the creator of Lemmy also the creator of torrents-csv? I ask because their dockerhub page hosts torrents-csv images as well as the lemmy one.


Cloudflare has dynamic DNS as well as a client to run on your server that will update automatically for you.


Private tracker and seed requirements is the reason that comes to mind for me. Back when I was on a private tracker some 20 years ago I would get the torrent file and the actual data from a friend so I could seed it without having downloaded it.


Do these 3rd party apps let you get rid of Shorts? I absolutely despise accidentally clicking on Shorts and would prefer if they actually stayed in the Shorts section so this doesn’t happen on my Home feed.


I have 2 pi 4. One of them runs Vaultwarden as my self-hosted password manager. The other runs TPLink Omada SDN management software to manage my switch and WiFi APs.



OP, are all of the working-as-expected VMs also members of the virbr0 network?

I’m thinking that this is a firewall issue on your VM host. If you DO NOT have any other working VMs then could you try disabling the firewall on the VM host and see if the VM can receive DHCP traffic.


No, then the VMs would get their own subnet. You want the NIC bridged so that the router actually sees the VMs.


So, most of us aren’t in the industry yet we managed to learn the jargon we needed to learn in order to do what we wanted to do. I don’t understand why you are adamant about others helping you when you don’t really seem to care enough to learn some words and their meanings.


It seems like you have a learning preference for conversational information transfer. Maybe try finding a discord group where people regularly talk about this kind of thing. People on Internet forums tend to prefer written documentation and value search engine prowess.


It’s better if you struggle, you will learn more that way. For me, the struggle is the fun part anyway. Also, if you need these services to be bulletproof you probably shouldn’t be self-hosting them.


You mentioned that you disabled the NGINX instance installed by Bitwarden, don’t do that. Just change the port that it is hosting on and then point NPM at that port. You can also set the Bitwarden NGINX conf to use a self-signed certificate and then use NPM to manage the real cert.


I already do use firewall rules, this is just an extra step I take to segment things which also serves to make it a bit easier for me to remember certain addresses. It is entirely unnecessary, but I like it this way.

Let’s say I have a static IPv4: 72.235.228.162

And IPv6 block: 2660:1100:45f0:c17:: /60

What I do is set up a Virtual IP in OPNSense and give it the address 2660:1100:45f0:c171:72:235:228:162

Then I set up the firewall rules for that IP.

Then I NAT 1:1 that IP to the NGINX VM’s IP and now the Internet doesn’t need to know about it.


If you like Mail-in-a-box just wait until you check out Mailcow!


I use NAT on IPv6 so that I control which IP address is exposed. I’ve got /60 and all of my home devices are assigned unique IPs. What I like to do is set up a V6 address that uses the same numbers as my static V4 address and NAT that to my NGINX box, basically using the router assigned V6 as a “local” address.


NAT certainly exists in IPV6, I use it on my home network for my nginx proxy VM. I cannot, for the life of me, figure out how to change the IP on the host so I do NAT on my router. 🤷‍♂️


Yeah, I gave up because it wasn’t really necessary for me. I have a /29 plus I can open ports so I just decided to set up an SMTP relay on my VPS because my ISP blocks outbound on port 25. I can still do inbound on port 25 so no issues receiving emails. It actually might benefit you to have an SMTP relay on the VPS to properly route the outbound email if you don’t want to have two Wireguard tunnels running.


One quick tip for your email setup - you want to set up routing rules (not NAT). I struggled with this for quite a while before I eventually gave up though. I started to write a tutorial but it remains unfinished. Check it out, might be helpful for you. https://github.com/madeofstown/Wireguard-VPS-Port-Forward


That’s pretty standard for nearly every router and Internet connected device. There is almost always a setting for Primary and Secondary DNS servers. Sometimes you can even set more (ie. 2 IPv6 DNS servers in addition to the 2 IPv4 DNS servers)


Do you know how much a library membership costs where you are? Are you unable to rent movies at your public library? BitTorrent covers the majority of my needs but when I can’t find that older movie online I can usually find it at my public library.


When you rip your own you get to control the quality, which I think is the best part, but I suppose if you needed to rip 100s of movies a year it would become a chore. The thing is that the majority of new movies and TV can easily be found on BitTorrent, so I would only need to rent and rip a few obscure or older films in a year, and those could probably be found at the library.


Paying for a piracy service kind of defeats the purpose for me. At $100 per year I would rather rent the movies and rip them myself.



Same, IONOS is cheap and I had no issues when requesting they open port 25 for my mail relay server.


Thanks to your comment I gave termux another try and finally figured out what I was doing wrong (pgk updates never working). DO NOT install termux from the Play Store, use FDROID. If you use the play store version you have an old and outdated version with old and broken package repos.


If you haven’t already, check out Proxmox. It’s an operating system that specializes in running Virtual Machines. If you run Proxmox at home you can have all the features that you just mentioned and more.


I ran one for a few months until I woke up one morning and it wasn’t working. As I was the only person using it, I didn’t bother to troubleshoot and just signed up for an account at lemmy.world.

If you want to run your own I recommend you check out the ansible install route. It’s really simple and straightforward once you wrap your head around ansible.


What’s the point of renting a VPS if you only access it from your own network? I understand why a large company would do it (risk mitigation) but I don’t understand why a self-hoster wouldn’t just use an old computer at home. Your costs would be reduced and you could more easily control access.

Now that being said, most Cloud VPS providers have a firewall that you can configure from their web portal. If you whitelist your home network public IP then you can be sure that anyone connecting to your VPS will have to be doing so from your home network. You could do the same thing with UFW or Iptables on the VPS but I recommend using the external firewall because it won’t take resources from your VPS while defending against a DDOS.


Well, for one, my hardware is never very dramatic.


Just a little nitpicking, the words you want to be using are “offSITE” and “onSITE” not “offSIDE” or “onSIDE” (this isn’t a football match).