Last I checked they haven’t yet added user-facing controls to configure this yet. I don’t know where it is on the priority list.
Last I checked they haven’t yet added user-facing controls to configure this yet. I don’t know where it is on the priority list.
https://tailscale.com/kb/1218/nextdns/
Easy to set up, mine is working great.
It’s accessing literally anything you self host from home, with minimal latency and without any port forwarding on your router or exposing your services to the Internet.
It’s primary benefit is how fast it is, how much easier it is to set up for even the most novice of users, and how ubiquitous all the clients are.
Plus it’s free for 100 endpoints, which is far more than most individuals will need for home labs. And even that you can get around by using subnet routing.
If you’ve ever wanted to run your own sort of Dropbox or Google docs (Syncthing/Next cloud) but didn’t want to deal with the security hassle of exposing it to the Internet, this removes that completely. No more struggling with open ports, fail2ban, or messing with reverse proxies.
This is why I unsubscribed from the Android community. I love Android, I use nothing but Linux at home and really appreciate open source software.
But the FOSS…enthusiasm is starting to border on zealotry. It’s getting really unpleasant.
Ludicrously simple setup, that’s all.
This is not remotely ghetto, this is really well done. Sure the fans are a bit wonky but that is one hell of a machine for the money.
Well done!
I stopped messing with port forwarding and reverse proxies and fail2ban and all the other stuff a long time ago.
Everything is accessible for login only locally, and then I add Tailscale (alternative would be ZeroTier) on top of it. Boom, done. Everything is seamless, I don’t have any random connection attempts clogging up my logging, and I’ve massively reduced my risk surface. Sure I’m not immune; if the app communicates on the internet, it must be regularly patched, and that I do my best to keep up with.
Just so I understand, you’re using your compose file to handle updating images? How does that work? I’m using some hacked together recursive shell function I found to update all my images at once.
Side note, I really feel for you with the duplicate comments, it happens to me constantly and I know it’s not our fault :(
Tailscale completely negated and desire I’ve ever had to run any kind of proxy or VPN. The setup tool all of 30 seconds to make an account, and then like 15-20 seconds per client. I set it up once several months ago and I completely forgot about it…it’s just quietly working in the background, completely transparent to me.
I’ve gotta say I’ve been using Porkbun for a few years now and I’ve never been caught off guard by insane renewal prices.
Strong suggestion for Tailscale here. It is incredibly easy to use and very easy to set up with multiple users. Opening ports directly to the internet is a thing of the past for me now, ever since I started.
And not even a remotely creative statement. 🙄