OneCardboardBox

@OneCardboardBox@lemmy.sdf.org

This profile is from a federated server and may be incomplete. Browse more on the original instance.

OneCardboardBox, (edited )

As others have said, a reverse proxy is what you need.

However I will also mention that another tool called macvlan exists, if you’re using containers like podman or docker. Setting up a macvlan network for your containers will trick your server into thinking that the ports exposed by your services belong to a different machine, thus letting them use the same ports at the same time. As far as your LAN is concerned, a container on a macvlan network has its own IP, independent of the host’s IP.

Macvlan is worth setting up if you plan to expose some of your services outside your local network, or if you want to run a service on a port that your host is already using (eg: you want a container to act as DNS on port 53, but systemd-resolved is already using it on the host).

You can set up port forwarding at your router to the containers that you want to publicly expose, and any other containers will be inaccessible. Meanwhile with just a reverse proxy, someone could try to send requests to any domain behind it, even if you don’t want to expose it.

My network is set up such that:

  • Physical host has one IP address that’s only accessible over lan.
  • Containerized web services that I don’t want to expose publicly are behind a reverse proxy container that has its own IP on the macvlan.
  • Containerized web services that I do want to expose publicly have a separate reverse proxy container, which gets a different IP on the macvlan.
  • Router has ports 80 and 443 forwarding only to the IP address for my public proxy
OneCardboardBox,

Yeah, I believe there’s some kind of bridge mode you must enable on the host’s interface.

OneCardboardBox, (edited )
  1. Hard to recommend, because it will depend on preferences. I went with a QRP Icom IC-705 because I knew I wanted to go hiking and do POTA with it. I will say that 10W can feel very limiting, and it can be tough to make the same contacts that others can easily hit. If down the line you want a stronger transmitter, you’d need to get an amplifier. The overall cost of QRP rig + amp might be more than a “base station” type model with higher xmit power out of the box. Again it all depends on your preferences. At the very least, I’d recommend something with good voice and digital mode performance. Plugging right into WSJT-X or JS8Call for digital is super fun, and I like it a lot more than talking to folks.
  2. Never done a build project for xceiver, so I couldn’t say. All those 10W systems can always be amplified for more output.
  3. That’s called a random wire antenna. It’s what I currently use when taking my rig out on the go. It consists of an antenna line and a counterpoise joined by a 9:1 unun (not balun). Keep it away from other metal parts like roof gutters or fences. The wire length isn’t actually “random”, but you can find tables online where people test for a length that gets ok SWR on several bands. You will still need an impedence matcher (aka “antenna tuner”) to actually get a usable SWR.
OneCardboardBox, (edited )

Yes, it’s the ratio of how much of the power that you transmit is reflected back towards your rig due to impedence mismatch of antenna <-> radio.

Ideally you want SWR < 2, but for simple voice modes at QRP power, it’s not the end of the world if you end up in the 2-3 range. However digital modes need a good SWR because they transmit at 100% duty cycle. If I don’t get SWR < 2 for my IC-705 during a digital transmit, the reflected power causes my computer’s USB port to reset. At higher powers it could damage my rig or my computer, so it’s definitely a thing to avoid.

OneCardboardBox,

For anyone wondering, this was done on the virtual console version, so the floating point glitch that lets you skip the climbing pole from Bowser in the fire Sea is available.

The A Button Challenge still stands for the console versions.

OneCardboardBox,

“Still stands” means that there is no known way to achieve it. Not that it’s known to be impossible.

Until the discovery of the virtual console glitch for BitFS a few years ago, the A button challenge “still stood” for all cases.

OneCardboardBox,

Not sure if you’re able to edit the title, but this doesn’t look like FOSS, just open source.

OneCardboardBox,

Did you mean source-available?

I guess? Always thought there was some pedantic Stallman-esque argument for the differentiation between FOSS and OSS, independent of the Open Source vs Source Available distinction.

The real history behind the Lunix operating system

BSD, Lunix, Debian and Mandrake are all versions of an illegal hacker operation system, invented by a Soviet computer hacker named Linyos Torovoltos, before the Russians lost the Cold War. It is based on a program called “xenix”, which was written by Microsoft for the US government. These programs are used by hackers to...

OneCardboardBox,

I know this is a joke, but I couldn’t be a programmer without some pedantry. LUnix is actually a real OS! I booted it on my Commodore 64 once.

en.wikipedia.org/wiki/LUnix

OneCardboardBox,

I used to never drink coffee because I didn’t want to become dependent on it. It also helped that all the coffee I ever tried tasted terrible.

Then one day, my husband was raving about switching to french press and how good it was. To humor him, I took a sip and… it was so delicious! My fate was sealed, and I regret nothing.

SSH login without user name? (docs.gitlab.com)

I was reading GitLab’s documentation (see link) on how to write to a repository from within the CI pipeline and noticed something: The described Docker executor is able to authenticate e.g. against the Git repository with only a private SSH key, being told absolutely nothing about the user’s name it is associated with....

OneCardboardBox,

It would have to iterate over all saved keys, which sounds rather inefficient to me and potentially unsafe (timing attacks etc.)

sshd only checks for matches in the user’s authorized_keys file, not system wide.

OneCardboardBox,

I’m ok if this requires better EM shielding of electric vehicles. RF bands are a natural resource, and we should prevent short term profit-seeking from shitting them up.

My Grandfathers pre-war Signal Electric MFG Co. Morse Key (lemmy.world)

I’ve inherited all my grandfathers radio and telegraph equipment. I have lots of memories of sitting on his lap in his radio room while he talked to people on the other side of the world before the internet was really a thing. He passed away in the mid 90’s and I think he would have loved this modern world and all its tools...

OneCardboardBox,

Such a beautiful straight-key! I bet there are plenty in the ham radio community who would appreciate a piece like that.

Is it your grandfather’s name engraved in the bottom left?

OneCardboardBox,

HR Giger is happily dead after seeing this

OneCardboardBox,

I kinda get “new-age cult” vibes from some of the interior pictures

Also, while I bet the house is quite heat efficient, the underground design means that rooms in the back will get no natural light, which would be pretty miserable.

OneCardboardBox,

My favorite absinthe painting: 1901 Portrait of Bibi la Puree, by Picasso.

Bibi was an absinthe fiend, and I think it shows.

https://lemmy.sdf.org/pictrs/image/7b3f413a-dd5f-4ab3-93e5-d73bbfe55788.png

OneCardboardBox,

Wait, what’s wrong with Grandpa Joe? He was a man sick with the humiliation and hopelessness handed down to him by society. Only the joy of seeing his grandson get a chance to be somebody was enough to cure him.

OneCardboardBox,

As a fast walker, I try to put people at ease when passing them from behind. I’d be suspicious too if someone came up on me very quickly.

I’ll usually try and be a bit louder in my walking as I approach, and maybe cough, sniff, or clear my throat loudly. Then as I get within passing range, I say a quick “pardon me” and go past. The goal is to let them know that I’m not trying to sneak up on them, just trying to get somewhere quickly.

OneCardboardBox,

Unless they’re from the timeline where Ireland invaded and occupied Britain in the 90s.

OneCardboardBox,

Wait, what do the PCB mods do?

OneCardboardBox,

They would not even need to open source the servers. Just making the server available for users to run (even under a proprietary license) would be enough.

OneCardboardBox,

I wonder how the REM is weighted. If it were balanced at both ends, I bet people could do cool tricks with it.

OneCardboardBox,

Ooh! Thanks for the tip! Been looking for some affordable drives for my next system.

I bought a LFF Dell Poweredge back in the fall, and have been waiting on a good deal for 3.5" disks. My current machine is a SFF HP Proliant, and I hate how much a 2.5" drive with good capacity costs.

OneCardboardBox,

A bridge in America collapsed after a cargo ship crashed into it.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • GTA5RPClips
  • rosin
  • mdbf
  • Youngstown
  • love
  • slotface
  • ethstaker
  • ngwrru68w68
  • kavyap
  • khanakhh
  • thenastyranch
  • DreamBathrooms
  • magazineikmin
  • anitta
  • osvaldo12
  • tacticalgear
  • modclub
  • InstantRegret
  • normalnudes
  • Durango
  • everett
  • cisconetworking
  • cubers
  • Leos
  • provamag3
  • tester
  • JUstTest
  • All magazines
    •