Search selfhosted on Lemmy and reddit. Take control of your own data and also lean why so many choose not to.

Trolling is a art

Hmm. I would have liked to see it in the engine they used for reach. The AI could be quite clever in that.

So is this going to be built on the original engine or a more modern one?

yeah I’m gearing up to deeply my own little opnsense box as a router

No i would only have one tunnel set up with an allowed range that was my local subnet at home (192.168.20.0/24) on the wireguard server you can set a dns for those connections and also in the client interface so when the laptop tried to ask the dns for an address it would talk to my home dns.

If the ip it was given was an external ip, outside of my LAN then the laptop just went though local wifi or whatever outside of the vpn tunnel to find the resource, but if it was inside the home range it pulled the connection straight from home via the tunnel. The home dns had dnd records for all my local services pointing to my reverse proxy so if it got a request for lubelogger.local it just pointed the browser to the ip of the reverse proxy which knew to send a request for lubelogger.local to the correct ip:port on the lan.

It meant I could use domain names safely without having them exposed to the world.

Technitium let’s you do domain replication to as many other instance as you want so I always planned to set up a second dns at my mum’s house in case mine went down but never go around to it.

Implementation was a wireguard server running on an old rpi1 Technitium running on a seperate machine Told the wireguard server to use technitium as it’s dns Wireguard on device with an allowed range of my local subnet. Add a dns record for any service you want accessible on technitium, use a tld that no one else uses online. I used.local, you’re supposed to use.apra but I didn’t like the look of it. Add your domain entry to your reverse proxy as normal.

Note the more I think about this i may have just gotten lucky because I had already visited those domains at home so when I was off site and typed in the domain the laptops list of hosts knew to try the local ip and it was funnelled straight though the tunnel.

I had some persistent network instability during a busy time and had to strip things back so don’t have this set up anymore. After exams I’ll try it again.

Re the dhcp. It may be common now days. I use quite an old ISP supplied router so when it was handling dhcp I could only rarely use a devices host name to address it on my local network. Technitium never had that problem

Technitium is a fully fledged authoritative dns, i haven’t used pinhole for a long time but the best part for me was setting up a zone for just local domain names use the.local tld. I then told my wireguard server to use the technitium instance as it’s dns. Then I told my phone and laptop to send any ips from my local subnet though the wireguard tunnel. That meant that I could access these local resources anywhere via the tunnel but could use their domains instead of ip addresses. Traffic outside those up ranges just went to the internet like normal.

Also the dhcp server on technitium can be set to automatically generate and propogate a domain name for any device that connects via dhcp so I could use them in place of ip addresses when I wanted to address the device.

I prefer technitium but I understand that people like pi hole

I think he means 30meters. miles is mi.

remember Cambridge Analytics? no one else seems to…

I never said i was on the right

setting up a multi platform, secure, free and well built messaging platform that can be adapted to use decentralised networks like LoRa? easy

Getting your friends and family to use it? literally impossible

I appreciate your rant and think your username is very apt.

meanwhile I have mates telling me that googles SSO is the best thing since sliced bread.

well what’s the name for people who don’t think there is a doomsday coming but feel like its not a bad idea to keep a tanks worth of petrol some canned food and a few blocks of water in the garage? I don’t think the internet is going to stop anytime soon either but if it did I’d be able to access Wikipedia, watch a few movies and my security cameras and smart home would still work.

Either you are splitting hairs or do not understand how precarious our way of life is.

Running out of food, water or fuel is not some hypothetical future bad thing. It happens all around the world, sometimes even in western countries.

In Australia we had a fire at one of the gas processing plants in the 90’s and the whole state was without gas (actual Liquid natural gas, for cooking and heating) for almost a month, back then literally everything was run on gas. hot water, ducted heating, ovens, many cars because it was so cheap and plentiful). It seems ridiculous considering we are one of the biggest producers in the world.

You think you are tacking ‘real’ issues with your servers, but to the average user you seem just as crazy as a guy with a basement full of beans and piss jugs, screaming about the government is watching us constantly.

But now we know that they are watching, and pushing people towards specific ideas using social media and many other things we though were just crazy talk.

I’d have a bit more sympathy for the preppers if I was you.

Even if I didn’t run my own DNS, the cache on the local devices would have been enough to let me access things like plex or nextcloud. Or just type the local ip in directly

depends what the bad thing is in your opinion, i guess.

If you mean “losing any semblance of control over the things we need survive (digitally)” then I’d say its the same a prepping.

You can quite comfortably exist in the digital space and access everything you need via others if you want.

Just like you can exist in the real world, using fuel, food, power and other goods and services, supplied by others.

Both scenarios work well right up until they don’t.

I used to have my own dns server running at home so I could direct all my mobile and laptop dns requests though it, from anywhere over vpn. It meant I got dns level ad blocking anywhere.

Yeah but at at least they never sell information about who you have been calling!

You’ve had “security though obscurity” now try “security though inability”!

There is some great resources here

https://ipcamtalk.com/wiki/ip-cam-talk-cliff-notes/

Unfortunately the average security enthusiast is a frothing conservative but they tend to keep their politics to a few dedicated threads, they are very helpful other than that.

If you want good performance in the dark keep your sensor size in the green on this chard

I currently run frigate on my server and just add cameras I find with the right sensor ratio for a good price. I have a couple of older 2mp wiz nets that would have been $500-700 new that I got for $70 each that see outside at night great.