dataprolet

@dataprolet@lemmy.dbzer0.com

Looking for a Mastodon instance?
Check out @serverbot.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Rubén Baler, neuroscientist: ‘We are guinea pigs. Our attention has become a profitable commodity’ (english.elpais.com)

dataprolet, 2 days ago

Full on conspiracy?

there are hidden interests and hands that pull the strings of the dynamics that are harmful

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Reverse proxy

I have an openwrt router at home which also acts as my home server. It’s running a bunch of services using docker (Jellyfin, Nextcloud, etc.)...

dataprolet, 4 days ago

How can something like Tailscale be blocked?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 2 days ago

Interesting, because Tailacale doesn’t use any special ports. How would that be detected? And could you maybe use Headscale on a dynamic port to circumvent that?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

deleted_by_author

dataprolet, 6 days ago

Systemd-haters would rather install MacOS than admit that systemd is not that bad.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Turkey stops all trade with Israel over ‘humanitarian tragedy’ in Gaza (www.theguardian.com)

Turkey has halted all trade with Israel, citing the “worsening humanitarian tragedy” in the Palestinian territories, which prompted strong criticism from the Israeli foreign minister....

dataprolet, 6 days ago

Turkey is invading Rojava/Kurdistan right now. What a fucking double standard.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 5 days ago

anfenglishmobile.com/…/turkish-army-launches-mili…

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 5 days ago

No.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Chill and funky house set (soundcloud.com)

[Tailscale] Can't connect VPS to local network?

I set up Headscale and Tailscale using Docker on a VPS, which I want to use as my public IPv4 and Reverse Proxy to route incoming traffic to my local network and e. g. my home server. I also set up Tailscale using Docker on my home server and connected both to my Headscale server....

dataprolet, 17 days ago

Of what?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

I’m using Headscale, but yes.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

How do I make sure of this? What am I supposed to see using the command?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

Thanks, that’s what I’m trying to do. :)

And my VPS doesn’t have any IPs in the same range as my home server.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

Doesn’t seem to work.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

No, I’m not using ACLs.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

Yes, both clients can tailscale ping each other and after doing so the status shows active; relay “ams”.

Using tailcale ping 192.168.178.178 also works for some reason.

Not sure what to do with the output of netmap.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 17 days ago

So to confirm your behavior, you can tailscale ping each other fine and tailscale ping to the internal network. You cannot however ping from the OS to the remote internal network?

Exactly.

Have you checked your routing tables to make sure the tailscale client added the route properly?

How do I do this? I use Headscale and headscale routes list shows the following:


<span style="color:#323232;">ID | Machine | Prefix           | Advertised | Enabled | Primary
</span><span style="color:#323232;">1  | server  | 0.0.0.0/0        | false      | false   | -
</span><span style="color:#323232;">2  | server  | ::/0             | false      | false   | -
</span><span style="color:#323232;">3  | server  | 192.168.178.0/24 | true       | true    | true
</span>

Also have you checked your firewall rules? If you’re using ipfw or something, try just turning off iptables briefly and see if that lets you ping through.

I’m not using a firewall, but the VPS is hosted on Hetzner, which has a firewall. But I already allowed UDP port 41641 and 41641. The wg0 rule is from the Wireguard setup I want to replace using Tailscale.


<span style="color:#323232;"># iptables --list-rules
</span><span style="color:#323232;">-P INPUT ACCEPT
</span><span style="color:#323232;">-P FORWARD ACCEPT
</span><span style="color:#323232;">-P OUTPUT ACCEPT
</span><span style="color:#323232;">-N DOCKER
</span><span style="color:#323232;">-N DOCKER-ISOLATION-STAGE-1
</span><span style="color:#323232;">-N DOCKER-ISOLATION-STAGE-2
</span><span style="color:#323232;">-N DOCKER-USER
</span><span style="color:#323232;">-A INPUT -s 100.64.0.0/10 -j ACCEPT
</span><span style="color:#323232;">-A FORWARD -j DOCKER-USER
</span><span style="color:#323232;">-A FORWARD -j DOCKER-ISOLATION-STAGE-1
</span><span style="color:#323232;">-A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
</span><span style="color:#323232;">-A FORWARD -o docker0 -j DOCKER
</span><span style="color:#323232;">-A FORWARD -i docker0 ! -o docker0 -j ACCEPT
</span><span style="color:#323232;">-A FORWARD -i docker0 -o docker0 -j ACCEPT
</span><span style="color:#323232;">-A FORWARD -i wg0 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 443 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 81 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.3/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 80 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.5/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 9090 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.5/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 8080 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.6/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 443 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER -d 172.17.0.2/32 ! -i docker0 -o docker0 -p tcp -m tcp --dport 9001 -j ACCEPT
</span><span style="color:#323232;">-A DOCKER-ISOLATION-STAGE-1 -i docker0 ! -o docker0 -j DOCKER-ISOLATION-STAGE-2
</span><span style="color:#323232;">-A DOCKER-ISOLATION-STAGE-1 -j RETURN
</span><span style="color:#323232;">-A DOCKER-ISOLATION-STAGE-2 -o docker0 -j DROP
</span><span style="color:#323232;">-A DOCKER-ISOLATION-STAGE-2 -j RETURN
</span><span style="color:#323232;">-A DOCKER-USER -j RETURN
</span>

dataprolet, 17 days ago

There is no tailscale0, but also not on my home server which also runs Tailscale and which I can access remotely using my Android. Could my existing Wireguard setup interfere with Tailscale?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 16 days ago

I’m not sure the Docker container is even using a tailscale interface, because there is none on my VPS or my home server.

And how do I see whether I have a device at /dev/net/tun?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 16 days ago
Are you sure Tailscale in Docker is creating a wg0 interface? Because I got a working connection between my smartphone and my home server and the home server is not showing any interface related to Tailscale?
default via 192.168.178.1 dev ens18 
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 
192.168.178.0/24 dev ens18 proto kernel scope link src 192.168.178.178 

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 16 days ago

Yes I’m running it on Docker and therefore have the docker0 interface.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

How are you making services remotely accessible? (kbin.run)

I need help figuring out where I am going wrong or being an idiot, if people could point out where......

dataprolet, 18 days ago

VPS with public IPv4, Wireguard/Tailscale/Headscale and my own Domain.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

dataprolet, 14 days ago

Headscale is pretty straight forward to set up and easy to use. And there are multiple WebGUIs available to choose from, if you need. If you have any questions, let me know.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Youtube is now unusable without a frontend (lemmy.world)

I have an extension that can individually disable all the most useless/addicting components of the Youtube site, such as shorts and whatnot. On the search page, I have turned on:...

dataprolet, 19 days ago

Good for you, but this is the wrong sub for you then.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Using ChatGPT with Linux

Last night I was nearly tearing my hair out trying to get a crappy inkjet printer installed when I turned to ChatGPT for help; 5 minutes later it was done (driver issues)....

dataprolet, 25 days ago

Is this as ad?

You could also use free LLMs, check out FMHY.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...