So. Fucking. Slow.

It sounds so fake when it’s dubbed by/for Americans.

It doesn’t support CalDAV. It’s the main reason I gave up on them. Also, having to use their mail client is not cool.

They are not open sourcing anything. They just want people to contribute. The license is not open in any good way fit the users.

FUTO in Romanian sounds a lot like “fuck her”…

No, the nginx runs inside your network. It’s the “entry point” to it and it proxies all requests to your respective services.

Thanks for the emojis. I wouldn’t have understood the words without them.

It’s not slow as in slow to respond. it’s slow when restarting… sometimes it takes 3-4 minutes until it’s up and I don’t have time for that ;-) Also, it’s a good “reason” for me to learn traefik.

Thanks for the great explanation.

So, currently, as I said, I’m using nginx proxy manager and do this:

• reverse proxy to all my services inside the internal network on http: *arr stuff, rss reader, jellyfin and some other minor things. All of them use name.local.home notation. I’m using a local DNS for this, of course.
• reverse proxy to just two services externally on https under wildcard certificates - both are non-standard names and the names are not related to the services themselves. For both these services I use Authelia with 2FA, so even if an attacker guesses the subdomain name, they’ll have to bypass that. As far as I can see in my logs, there are no attempts to breach my services. This is what I want to replicate and I’m planning on testing it.

On the other hand, You gave me a good idea about using *.lab.domain.com getting resolved by the local DNS and the main *.domain.com by my public DNS. I’ll give this a try too in the near future. Another plan for me is to start using Authentik, as I saw it’s a bit better than Authelia in some areas, even though it may be overkill for a little project - I’ll have to see.

it’s probably not what you want

What do you mean?

This looks really interesting. I’ll check it these days.

It’s still a server. A file server in this case.

I don’t think that’s true anymore. I moved my .eu to porkbun (which is an American company) and it works. Also, I just tried registering a new .eu domain with them and it works - and they have very good prices! (I’m not affiliated with them)

The answer is yes in both cases.

1. Docker has an internal networking setup. You can create a “network” and all containers in that network communicate with each other, but not with other containers in other networks. So you can set up a VPN container in a network and all containers in that netowrk could use the VPN to route their traffic through.
2. You can configure your VPN container to expose some ports that it uses to communicate, and then the “regular applications” can make use of those ports to connect through the VPN.

If you have tons of CPUs and RAM, yes.

XDG doesn’t mean you need a GUI. XDG is a specification on how to set up config, cache, etc. directories. aria2 should work without setting anything up.

What’s wrong with APC? I have one for 6-7 years. I’ve changed the battery once and I think I’ll have to change it again this year. I didn’t have any problems with it.

Same here. Taught my wife how to start WireGuard on her android phone and then access any of the services I run. This way I only have one port open and don’t have to worry too much.

Tailscale is WireGuard. Just a fancy one.