this post was submitted on 16 Aug 2024
38 points (100.0% liked)

chat

8197 readers
438 users here now

Chat is a text only community for casual conversation, please keep shitposting to the absolute minimum. This is intended to be a separate space from c/chapotraphouse or the daily megathread. Chat does this by being a long-form community where topics will remain from day to day unlike the megathread, and it is distinct from c/chapotraphouse in that we ask you to engage in this community in a genuine way. Please keep shitposting, bits, and irony to a minimum.

As with all communities posts need to abide by the code of conduct, additionally moderators will remove any posts or comments deemed to be inappropriate.

Thank you and happy chatting!

founded 3 years ago
MODERATORS
 

What's their excuse?

you are viewing a single comment's thread
view the rest of the comments
[–] Vent@lemm.ee 6 points 3 months ago (1 children)

Cloudflare tunnel (aka a reverse proxy, like ngrok) will also likely work for your mystery project, and it’s free. VPN is more secure, but as always, it's a trade-off between the security of a vpn and the convinence of a reverse proxy that's available on the open internet.

[–] TankieTanuki@hexbear.net 3 points 3 months ago* (last edited 3 months ago) (1 children)

A reverse proxy like nginx?

Basically, I want to move files between my NAS (behind CGNAT) and webserver and rsync isn't cutting it. I think WireGuard will be best, then I can use my existing NFS and Kerberos infrastructure.

[–] wheresmysurplusvalue@hexbear.net 2 points 3 months ago (1 children)

Do you need a static IP or could you get away with using dynamic DNS like duckdns? I think wireguard allows you to use a hostname instead of IP address. The wireguard peers would have static private IPs in the VPN address space. I had a much simpler setup than you, but this is what I was doing before tailscale.

[–] TankieTanuki@hexbear.net 2 points 3 months ago* (last edited 3 months ago)

A dynamic IP would work; I just need an IP that is unique to my router and isn't shared by a dozen other households---I don't know what the term for that is.

There is a way to make it work with WireGuard using something called MASQUERADE, I'm learning.