service1.example.com {
reverse_proxy localhost:5001
}
It can be done in Apache as well, but Caddy is simply better and simpler.
As for images, take a look at Immich if that’s something you might want.
Monthly unless I learn about a vulnerability that would require it sooner.
What’s gluetun? Seems like it’s a VPN client? What’s special about it?
Gluetun can connect to multitude of VPNs, but most importantly it can be used to force other containers to use only the gluetun network, meaning if you disconnect from VPN for whatever reason, the other containers don’t suddenly send data over non-VPN network.
So if you’re torrenting and use gluetun to provide internet to the qBittorrent container, you won’t accidentally reveal your real IP if your provider’s server goes down for a few seconds.
How do you use it in your setup?
Configure it to connect to my VPN, create a file with the public port it uses, configure qBittorrent to only use gluetun for network and some script which reads the file with public port and changes it in qBittorrent.
Do I need to know about this if I use Tailscale on the host for connecting to my VPN?
Depends. I like having everything container related in the containers. Sometimes I need to do something without VPN, this would limit me. Also, if you don’t configure disconnect on VPN connection loss in a different way (interface binding), you risk revealing your IP.
Would gluetun allow me to use an additional VPN provider for certain apps without messing with the host Tailscale?
Yes. Though you would be double VPNed: App -> gluetun -> host VPN -> target server. That would probably add some latency.
Linux Mint, lemmings.world, mastodon.social. I might be slightly biased with the Lemmy instance.
What’s the framework situation? I was planning on buying one next year.
Over half my library is from GOG and over 95% of my gaming is on Linux. It’s as easy as Steam, you click install and play.
Well, for me GOG and its existence is one of the good news in gaming, so check that out if you didn’t yet!
I’d give Syncthing a try. Though you should make some kind of tunnel so that they can communicate without relays, the speed there really depends on what traffic the relay is going through.
Yep, I use it everywhere, that’s why I said Nix and not NixOS. I even use it on the company Windows machine inside WSL.
Or just switch to Nix and finally witness some actually good package manager.
If you want to self host, rent some cheap server somewhere (I use Hetzner) the will act as a proxy and then configure frp.
It’s basically what Cloudflare tunnel does, except you need to provide the public server instead of Cloudflare giving you one for “free.”
My mnemonic is a bit weird, purrent working directory. I know the term cwd (current working directory) but I never bothered to learn what the p stands for, so I named it myself as purrent.
They would. But if you want to do it the Gentoo way, just disable using cache in Nix, it will manually compile every package you install.
Nix-shell and nix flakes are unparalleled, I can’t really live without them anymore. Hell, I even use them on my work Windows machine inside WSL.
In the immortal words of Linus Torvalds:
In short: just say NO TO DRUGS, and maybe you won’t end up like the Hurd people.
So NixOS but slower and worse?
Does it need to be that specific tld? There are plenty you can use, like .eu if you’re from eu, or .dev if you’re a developer etc.
Seconding caddy, it’s extremely simple.
That really depends on the implementation. In the case of gluetun, yes, no data can leak.
In Linux, by interface binding, no data can leak as well. No idea how Windows network stack is implemented.