Enabling multi DC redundancy is really easy though. The other providers you mentioned may have it by default, but they’re also a lot more expensive.
I love that they let me pick my own redundancy strategy, without forcing me to pay for theirs
- 2 Posts
- 12 Comments
Joined 2 years ago
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
link Englishfedilink 4 months ago2·arrow-up
link Englishfedilink 5 months ago38·arrow-up ENS stands for Ethereum Name Service
link Englishfedilink 10·arrow-up 5 months agoedit-2 I’m personally using Docker MailServer. It’s been working great for over a year now, but mailu seems to have some interesting features (I’m especially interested in the admin panel)
link Englishfedilink 5 months ago8·arrow-up You’re probably behind a CGNAT, check out the other comments
link Englishfedilink 5 months ago2·arrow-up Glad I could help :)
link Englishfedilink 3·arrow-up 5 months agoedit-2 Your ISP might make you go through another layer of NAT. Can you find the WAN IP address of your router and compare it to your public IP address from a website such as ipinfo.io ?
If they do not match, you’re probably out of luck and will need to forward your port from an actually public IP in order to achieve what you want
More details : CGNAT (Carrier Grade Network Address Translation) is basically a second router between your router and the public internet. This second router is configured in the same way as your personal one, the main difference being that your ISP fully manages it. From the viewpoint of this second router, your WAN IP is a private IP, and you share one actual public IP with several other customers (the same way all devices on you LAN share one single WAN IP)
Performing port forwarding from the public internet to your LAN, when behind a CGNAT, would require you to be able to configure a forwarding rule in the ISP’s NAT, which you usually cannot do.
link Englishfedilink 1 year ago2·arrow-up I will definetly look into this. I’ve been using tube archivist for a while now, but it eats so much RAM (especially the Elastic search dependency IIRC)!
link Englishfedilink 1 year ago2·arrow-up I did not try it out yet, but I will make sure I do. I love a lot of things about the approach you described
link Englishfedilink 1 year ago3·arrow-up Each time you send a packet over the internet, several routers handle this packet without touching the source and destination IP addresses.
There is nothing stopping him from configuring the VPS in a way that forwards packets from the home server, rewriting the destination IP (and optionally destination port as well) but leaving the source IP intact.
For outgoing packets, the VPS should rewrite the source (homeserver) IP and port and leave the destination intact.
With iptables, this is done with
MASQUERADErules.This is pretty much how any NAT, including ones behind home routers, work.
You then configure the homeserver to use the VPS as a gateway over wireguard, which should achieve the desired result.
link Englishfedilink 2 years ago11·arrow-up The readme mentions “transcription time on CPU” so it’s probably running locally
link Englishfedilink 2 years ago12·arrow-up Yeah, there is something oddly mesmerizing about projects that solve an “already-solved-in-a-more-efficient-way” problem in a weird way
Alternatively, if your databases are on a filesystem that supports snapshots (LVM, btrfs or ZFS for instance), you can make a snapshot of the filesystem, mount the snapshot and backup thame database from it. This will ensure the backup is consistent with itself (the backed up directory was not written to between the beginning and the end of the backup)