It shouldn’t mess with your current routing but if you’re running other VPNs you may run into issues.

After you join the machines to the tailnet, each machine gets a new IP address ( only visible to other machines in the tailnet), by default it’s a 100.x.y.z you can check the tailnet for the device IP.

Now you can keep the port closed on your router and it will still be accessible over the usual lan ip and port. But when you want to access remotely, turn on tailscale and connect using the tailnet IP.

Another cool thing you can do with this setup is turn your home server into an exit node. By default it will only route things that are in the tailnet (100.x.y.z subnet). But if you turn your home server into an exit node you can funnel all your traffic back through the exit node. Instant free VPN back home!

Here you go friend, enjoy! 😁

https://tailscale.com/blog/how-tailscale-works

Unencrypted HTTP can mean that anyone can see your traffic as it passes through their network. Your ISP will see that traffic. If you’re streaming pirated music and you’re in a country that cares about those things, might not go very well. From a security stand point though, you still wouldn’t want to trust the authentication on the open port. A vulnerability may exist that you don’t know about. It’s always better to keep them closed and add another layer or two between your home computer and the public.

Tailscale let’s you tunnel into your home network without opening any ports, and it encrypts the traffic. Much safer way of doing it.

Another tip, please be very careful when exposing ports to the public. With docker you’re already mitigating your attack surfaces but an open port allows anyone to make a connection and there are lots of bots out there looking for open ports and vulnerabilities. A good alternative would be to setup wireguard and instead then connect through that or if you like simplicity check out Tailscale.

This is kinda how I’ve come to look at it. You cannot ask questions of fact to a machine that works in probabilities.

Ha, ya know? I think I know some people who will just regurgitate whatever input they receive

…

:(

Mullvad let’s you write down an account number on a piece of paper and mail it in with cash and they’ll activate it.

What do you mean? If it makes you feel any better, the Earth will be fine. Has been for a couple billion years. We did this to ourselves :(

You’re not going to win over people with condescension. You do see the irony of being a dick while trying to defend people, right?

Don’t, you can still install nix into Garuda. Works great as a separate package manager that won’t get in the way.

I think the problem is that most people dive right in and go to NixOS which has its quirks as a linux OS (see FHS). The Nix language is great at building and moving source code between computers, really any big collection of binaries. If you don’t do that, try just using the nix-shell command to instantly run a piece of software without installing it. You can write a shell.nix file to hop into and out of an environment with whatever software you need. Once you can write a couple .nix files then move onto NixOS; which after all is just a big collection of binaries.

Well thanks for getting my hopes up. I went into the profile looking for penis and all I got was cat pics D:<

Okay… one is closed sourced and the other open. That much I know. With those points out of the way, why is jellyfish superior?

What happened with Emby? I’ve used their service for a long time and have been very happy with their lifetime premium.

Hey, you’re a good person, ya know that?

Woah, naw 130 meters is not far at all for an AR-15. Max effective range for a point target is 500 meters, meaning you can accurately hit an average sized person at that range. If you have something like a standard issued trijicon ACOG RCO, look at the BDC (Bullet Drop Compensation) lines go all the way to 800m. Interestingly enough too, the width of those lines is the width of an average person’s shoulders at that range.

Good news, they support OIDC! Haven’t tested it myself so your mileage may vary.

https://headscale.net/oidc/#basic-configuration

Check out this guide to get started with exposing your services via proxy. I started with v1 and migrated to v2. Until I dug this link out for you, I had no idea about v3; but if it’s as good as the first two I can only imagine how good it is now.

https://www.smarthomebeginner.com/traefik-v3-docker-compose-guide-2024/

The name is silly but the Galaxy XCover 6 pro checks all those boxes as a new phone. It even has the old style notification light, different colors for notifications.

Removed by mod