this post was submitted on 14 Dec 2024
62 points (95.6% liked)

Selfhosted

40705 readers
450 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
 

Good FOSS software and reliable service providers? Etc.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 2 points 1 week ago

my router uses openwrt which supports dynamic DNS updating on its own for multiple providers, I currently am through namecheap on it.

[–] [email protected] 45 points 1 week ago (3 children)

Any registrar worth using has an API for updating DNS entries.

I just found this with a quick search: https://github.com/qdm12/ddns-updater

[–] [email protected] 12 points 1 week ago (1 children)

exactly. I literally have a bash script that calls the API triggered by cron every 30 minutes. That's it. Are people seriously using a freaking docker container for this?

[–] [email protected] 7 points 1 week ago (2 children)

It's easy to set up and also keeps a history

[–] [email protected] 9 points 1 week ago (1 children)

Ah, a history would be nice. I've been thinking of keeping some stats to monitor when the connection goes down, and how often my IP changes.

Fortunately I've kept the same IP since i changed ISPs a few months ago.

Personally I still think docker is overkill for something that can be done with a bash script. But I also use a Pi 4 as my home server, so I need to be a little more scrupulous of CPU and RAM and storage than most :-)

[–] [email protected] 1 points 1 week ago

Even if it is docker it’s still a bash script or something in the container right? Or are people referring to the docker CLI directly changing DNS records somehow?

My best guess is the reason to involve docker would be if you already have a cluster of containers as part of the project. Then you can have a container that does nothing but manage the DNS.

[–] [email protected] 2 points 1 week ago

I just dump the changes with timestamps to a text file. Notifications for IP changes get sent to matrix after the DNS record is updated.

[–] [email protected] 7 points 1 week ago

I would recommend OVH for DNS, they have an API and are on the list for that tool. Also you can use the API to get lets encrypt certificates

[–] [email protected] 2 points 1 week ago

Looks good. Thanks!

[–] [email protected] 16 points 1 week ago (1 children)
[–] [email protected] 6 points 1 week ago (1 children)

Me too. I use uptime kuma to send the api request. then I also get uptime status 🙂

[–] [email protected] 1 points 1 week ago

That's a great idea, I hadn't thought of that

[–] [email protected] 13 points 1 week ago

cloudflare + the dynamic dns plugin for opnsense.

[–] [email protected] 11 points 1 week ago

I use ddclient but in a docker container. Works great with minimal config

[–] [email protected] 10 points 1 week ago

Have done it via bash scripts for years. Never had a problem. Since a few months i use https://github.com/qdm12/ddns-updater

[–] [email protected] 8 points 1 week ago

afraid still works like a charm. cloudflare is ok. duckdns is cool.

[–] [email protected] 7 points 1 week ago (1 children)

I solve it by paying way too much for a block of static IPs.

[–] [email protected] 6 points 1 week ago* (last edited 1 week ago) (1 children)

Way too much for sure.

Just the business internet to get the foot in the door for a static IP 5x's the cost of my Internet.

It's actually cheaper to just have DC IPs and proxy through hosted containers. Which is kind of crazy.

Negative aspect is that DC IPs aren't treated very nice.

[–] [email protected] 1 points 1 week ago

Yeah this has been the biggest problem with hosting. For SMTP to work outbound you gotta have a good static IP. Everything else can be DDNSed. So either you get a business class connection or proxy through a VPS front end.

[–] [email protected] 7 points 1 week ago (2 children)

Ixury for people that can have public IPs! :)

[–] [email protected] 4 points 1 week ago (2 children)
[–] [email protected] 3 points 1 week ago (7 children)

It's why IPv6 is important, but many didn't listen.

[–] [email protected] 3 points 1 week ago

@chronicledmonocle @sugar_in_your_tea This is why I love yggdrasil. Thanks to having a VPS running it that all of my hosts globally can connect to, I can just use IPv6 for everything and reverse proxy using those IPv6 addresses where I need to. Once hosts are connected and on my private yggdrasil network, I stop caring about CGNAT or IPv4 at all other than to maybe create public IPv4 access to a service.

load more comments (6 replies)
[–] [email protected] 2 points 1 week ago (1 children)

Yeah, there are workarounds... And who knows, maybe its just safer than public ip... But definitely require some external fixture.

[–] [email protected] 3 points 1 week ago (2 children)

I guess you already know about the options, but for others:

Find the cheapest VPS out there and have a Wireguard tunnel between it and your home network. Run ddclient or similar on the VPS in case the public IP changes.

load more comments (2 replies)
[–] [email protected] 1 points 1 week ago* (last edited 1 week ago) (1 children)

I'm in the same situation.

Fortunately there's a million companies that offer VPS with a static IP address for only few bucks a month. I set one up to run a wireguard VPN server which all my devices and home servers connect to as clients. I also configured everything to use a split tunnel to save bandwidth.

It's an added layer of security too.

[–] [email protected] 2 points 1 week ago (1 children)

Can you detail the split tunnel part?

[–] [email protected] 2 points 1 week ago* (last edited 1 week ago) (1 children)

Normally when you're on a VPN all the network traffic to and from your device is going through the connection to the VPN server, e.g. browsing the internet, online games, etc. It can cause issues with other online services and uses bandwidth (cheap as it is) many VPS provider charges for.

A split tunnel tells the VPN client to only send certain traffic through the tunnel. My wireguard setup assigns IP addresses for the VPN interfaces in the subnet 192.168.2.x, so only traffic addressed to IPs on that subnet get sent through the tunnel. In wireguard it's a single line in the config file:

AllowedIPs = 192.168.2.0/24
[–] [email protected] 2 points 1 week ago

I am doing split tunnel since years without knowing :)

Thanks, I learned something new.

[–] [email protected] 6 points 1 week ago* (last edited 1 week ago)

used a bash script and a cron job for a long time, now the whole topic is one of the projects i regularly rewrite whenever I want to get my hands dirty with a new programming language or framework.

[–] [email protected] 6 points 1 week ago

Afraid has a curl update. Cron job. It's that simple.

[–] [email protected] 5 points 1 week ago (1 children)

Cloudflare DDNS updated by ddclient on my OpnSense router. Cloudflare happens to be my current domain registrar. Honestly, my IPv4 doesn't change that often. And when I used to be on Comcast, they assigned a block of IPv6 addresses and the router dealt with that. Unfortunately, I now have Quantum Fiber who only assign a single IPv6 address, so I gave up on IPv6 for now.

load more comments (1 replies)
[–] [email protected] 5 points 1 week ago

Ddns-updater and porkbun.

[–] [email protected] 5 points 1 week ago (4 children)

Have you heard of the kuadrant project? It is for kubernetes and has a dynamic DNS element. Kuadrant.io

[–] [email protected] 5 points 1 week ago

Probably good, but I want to stay away from anything related to Kubernetes. My experience is that it's an overkill black hole of constant debugging. Unfortunately. Thanks though!

load more comments (3 replies)
[–] [email protected] 5 points 1 week ago

My ip updates maybe once every three months or so, but what i did was just write a script that checks the current ip and updates the domain registrar. My domain is on cloud flare, and they have an API through which I can do it. It's literally one POST request. There are solutions out there but I wanted a really simple solution I fully understand so I just did this. Script runs in cron every few hours and that's it.

[–] [email protected] 4 points 1 week ago (1 children)

Ddclient has done the trick for me, and my registrar supports it with an API

[–] [email protected] 4 points 1 week ago

I set it once like 6 years ago and forgot it wasn't something pre-installed and configured until I saw your comment. I was reading through the comments looking for the "you don't need to do anything, ddclient takes care of it"

[–] [email protected] 4 points 1 week ago* (last edited 1 week ago)

I would go for registering my own domain and then rent a small vps and run debian 12 server with bind9 for dns + dyndns.
If you don't want to put the whole domain on your own name servers then you can always delegate a subdomain to the debian 12 server and run your main domain on your domain registrators name servers.

edit:

https://github.com/qdm12/ddns-updater

If your registrar is supported the ddns-updater sounds a lot easier.

[–] [email protected] 4 points 1 week ago

What do you mean?

[–] [email protected] 4 points 1 week ago (1 children)

Desec + Nginx Proxy Manager as a reverse proxy. Solves ddns and https with a letsencrypt wildcard cert.

load more comments (1 replies)
[–] [email protected] 4 points 1 week ago

Tor hidden service

[–] [email protected] 3 points 1 week ago

If you don't need actually public DNS, something like Tailscale might be an option.

[–] [email protected] 3 points 1 week ago

@sith
If this is useful we had a bit of a conversation about DynDns options a while back. Im currently using Hetzner with my subdomain names being dynamically updated.
lemmy.ml/post/18477306

[–] [email protected] 1 points 1 week ago

https://www.cloudns.net/ Makes dynamic DNS very easy.

[–] [email protected] 1 points 1 week ago

terraform and AWS route 53 on a self hosted gitlab pipeline.

load more comments
view more: next ›