Readit News logoReadit News
xlmnxp commented on IncusOS – immutable OS run incus   discuss.linuxcontainers.o... · Posted by u/xlmnxp
xlmnxp · a month ago
IncusOS is an immutable OS solely designed around safely and reliably running Incus. It uses modern security features like UEFI Secure Boot and TPM to provide a safe boot experience and seamless full disk encryption.
Posted by u/xlmnxp a month ago
IncusOS – immutable OS run incusdiscuss.linuxcontainers.o...
Posted by u/xlmnxp 2 months ago
Exposed Source Code of Apps.apple.comegithub.com/rxliuli/apps.a...
Posted by u/xlmnxp 2 months ago
Kide – Fast and Lightweight Kubernetes IDEgithub.com/openobserve/ki...
Posted by u/xlmnxp 2 months ago
Knocker, a knock based access control system for your homelabgithub.com/FarisZR/knocke...
xlmnxp commented on Tailscale 4via6 – Connect Edge Deployments at Scale   tailscale.com/blog/4via6-... · Posted by u/tiernano
lostmsu · 7 months ago
This is brilliant! How much bandwidth did you dedicate to it?
xlmnxp · 7 months ago
you mean the public service? I think about 0.5Gbps with 10TB/month traffic

it simple bandwidth but enough for free service and there option to self-host the service anytime you want

xlmnxp commented on Tailscale 4via6 – Connect Edge Deployments at Scale   tailscale.com/blog/4via6-... · Posted by u/tiernano
lostmsu · 7 months ago
Does it work with https? How?
xlmnxp · 7 months ago
yes it works with https, read SNI from echo hello message then connect both connection without decrypt and traffic
xlmnxp commented on Tailscale 4via6 – Connect Edge Deployments at Scale   tailscale.com/blog/4via6-... · Posted by u/tiernano
lostmsu · 7 months ago
No problem, I love the tech.

My journey was: Wireguard (dropped because it is pain in the ass to configure and poor Windows support) -> Tailscale (dropped because it had RCEs at the time) -> Nebula (needs a separate service that issues host certificates, or manual clunky process) -> Yggdrasil. This was for personal stuff, but now I am also using it for my p2p GPU cloud startup (see https://borg.games/setup).

In comparison to other options I found Yggdrasil to be straightforward to setup:

1. Get it

2. Edit yggdrasil.conf to add public peers you want to connect to. You can get them from https://publicpeers.neilalexander.dev/

3. Repeat on all machines (Android is supported, unsure about iOS)

Now they have access to each other and everyone else in Yggdrasil by their _permanent_ Yggdrasil IPv6 address (derived from PrivateKey in yggdrasil.conf).

OPTIONAL quality-of-life stuff:

4. add Listen entries to yggdrasil.conf and a corresponding port forward on your home router then use it as a peer for your out-of-home machines to avoid extra hop to public peers

5. Create a bunch of DNS AAAA (IPv6) at your favorite DNS provider to give your machines names

Extra bonus: they recently added userspace stack support, so you can embed Yggdrasil directly into your app, and use it as a SOCKS proxy: https://github.com/yggdrasil-network/yggstack

xlmnxp · 7 months ago
You can also use bridge46 to give global WAN access to your subnet

https://www.reddit.com/r/ipv6/s/QkWNW3PCZN

Posted by u/xlmnxp 8 months ago
Extractify: Extract and explore archives online, securely in browserextractify.zip...
x

u/xlmnxp

KarmaCake day116June 7, 2021View Original