this post was submitted on 13 Nov 2024
188 points (97.0% liked)

Selfhosted

40349 readers
324 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

I never could get Nix working but maybe someone will

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 1 week ago* (last edited 1 week ago) (2 children)

What about Tailscale? I know it's Proprietary software, but still.

[–] [email protected] 12 points 1 week ago (4 children)

Tailscale... is not that good. The underlying wireguard is robust, but tailscale control plane is completely proprietary, as well as their DERP servers that it too often uses completely needlessly. They can also block you off from downloading it, updating, or logging in, if you happen to be in a wrong country.

I'm myself looking for an alternative to it, but having trouble finding something I could share with non tech savvy friends while not being as complex on my end as, say, open/strongswan ais. Any suggestions welcome.

[–] [email protected] 7 points 1 week ago (1 children)

Have you considered having Headscale on a cheap VPS? We are actually doing that and it is pretty capable. IIRC, you can configure not to use the tailscale servers at all, and use your own public VPS for coordination. Bonus point, tailscale hired the Headscale developer and maintainer, and they are allowed to work on Headscale while on their payroll. The team looks very much into FOSS.

[–] [email protected] 2 points 1 week ago (1 children)

Yep. That's the number one contender. Well right after overriding default DERP's with my own VPS machines. I'll definitely try it out over some weekend.

One of my other concerns with this and other solutions suggested is the reliance on wireguard which can be subject to fingerprinting and censorship. Do you happen to know if it'd be possible to swap out Headscale's implementation of wireguard to amnezia? I'll have to do my homework anyway, but who knows, maybe there are some pitfalls to avoid.

[–] [email protected] 1 points 1 week ago (1 children)

Oh, never heard of amnezia. Never needed actually. But it looks like a good improvement on Wireguard. I will need a separate setup to test it out and currently I'm away from home with no clue when I will return. If I happen to find anything, I will definitely ping you.

In the HN page you linked many people mentioned v2ray. Have you tried that? How good is it?

[–] [email protected] 1 points 1 week ago

In the HN page you linked many people mentioned v2ray. Have you tried that? How good is it?

Nope, haven't actually read the comments, just sent the article as reference to the issue. It does indeed sound quite promising. Think it'd be nice to have even if as just a fallback, so I'll try that too, whenever I get a moment.

[–] [email protected] 5 points 1 week ago

I use zerotier personally

[–] [email protected] 1 points 1 week ago* (last edited 1 week ago) (1 children)

Headscale worked for me, but I get the non-tech saavy friends part doesn't quite jive with it as a solution.

Still, anyone wanna ditch Tailscale and only use it for hosting sites across proxies? Headscale is great.

[–] [email protected] 1 points 1 week ago

Yeah I don't understand how this is different than headscale, but I'm very much not savvy on the pipes and tubes that make the Internet go round. Can anyone explain?

[–] [email protected] 11 points 1 week ago

Tailscale is actually a lot more open than you think. The agents are all foss and there is a self hostable version.