Figured I’d give Netbird a go, glad I did because I can self host extremely easily by using the new services feature.

You specify a subdomain, point to a peer, specify a protocol and port, and you are good. NetBird fetches you the certificate and your site goes live fast.

I can use my Immich with my mobile data now.

Edit: Note that I choose to self host NetBird, and haven’t really used the service they provide all that much.

  • kcweller@lemmy.worldEnglish
    10·
    10 hours ago

    I’m an oldhead on hosting. I have an semi-old server running in a cabinet in my office space at home, which runs an nginx reverse proxy. My DNS records are maintained on the side of the webhost where I have my domain (and email inbox) registered. These records point directly to my WAN IP, so a lookup of my domain would instantly show my public IP.

    I host a couple of services on that server, some for myself, some for friends. One of them is a Jellyfin instance.

    I’m a bit lost in the technobabble, would Netbird help me hide my IP from a lookup, and solve things like DDoS protection / AI scraping, without me needing all kinds of wireguard apps etc?

    I know its superficial, but I find it important that when I’m visiting my dad’s, I can watch a film on the Chromecast from my server, so putting a vpn in front of that would mean to screw with that.

    • un_ax@lemmy.sdf.orgEnglish
      1·
      2 hours ago

      I don’t think so in your case. From their docs these features are only available for self hosted instances, so you’d have to host Traefik instead of Nginx and end up with a similar config as your current one.

      Netbird/Tailscale are at their heart private LAN that you control that routes over the internet. They have some features on top to make DNS/TLS/Services/Tunneling easier. OP is using a service to allow external access to a host on their LAN.

      If you wanted to hide your home IP you could either use something like Defelct or Cloudflare as a reverse proxy, or host your own reverse proxy on a cloud provider (either Nginx like you currently are, or Netbird’s reverse proxy UI) and proxy it back to your local server over something like Netbird/Tailscale.

      DDOS/Scraping protection would depend on the method you choose.