Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://thegoatery.dyndns.org/objects/8a89e8f8-1865-3561-b08d-c55018884464">goatsarah (goatsarah@thegoatery.dyndns.org)'s status on Monday, 23-Oct-2023 02:55:22 JST</a><a href="https://thegoatery.dyndns.org/profile/goatsarah" title="goatsarah@thegoatery.dyndns.org"><img src="https://gnusocial.jp/theme/gnusocialjp/default-avatar-stream.png" width="48" height="48" alt="goatsarah" style="position: absolute; left: 0; top: 0;">goatsarah</a></section><article><p>Put my friendica installation on a VLAN. It made accessing it locally ... interesting.</p><p>So I can access it from outside. Fine.</p><p>But if I try to access it internally, the traffic just gets dropped. There's no firewall rule to handle the forward via external IP address loopback.</p><p>So I set up a forward, and of course, that was a stupid thing to do. Every other https service in the world suddenly and unceremoniously disappears.</p><p>So I change the forward to only be something looking to loopback via my external IP.</p><p>But the external IP is dynamic. The router will update the dyndns record, but it will not update its own firewall rule. I'd have to do it manually every time it changed. Very far from ideal.</p><p>But inspiration struck! I have my own DNS server! (pihole).</p><p>As of now, thegoatery.dyndns.org from within my internal network resolves to the IP address of the friendica box on the VLAN.</p><p>Done.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2219672#notice-4366230">In conversation</a><time datetime="2023-10-23T02:55:22+09:00" title="Monday, 23-Oct-2023 02:55:22 JST">about a year ago</time> <span>from <span><a href="https://thegoatery.dyndns.org/display/8a89e8f8-1865-3561-b08d-c55018884464" rel="external" title="Sent from thegoatery.dyndns.org via ActivityPub">thegoatery.dyndns.org</a></span></span><a href="https://thegoatery.dyndns.org/display/8a89e8f8-1865-3561-b08d-c55018884464">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/621888">Untitled attachment</a></label><br></li><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://thegoatery.dyndns.org/">The Goatery | Home</a></h5><div></div></header><div></div><footer></footer></article></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/1694042">Untitled attachment</a></label><br></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/1694043">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
goatsarah (goatsarah@thegoatery.dyndns.org)'s status on Monday, 23-Oct-2023 02:55:22 JST goatsarah
Put my friendica installation on a VLAN. It made accessing it locally ... interesting.
So I can access it from outside. Fine.
But if I try to access it internally, the traffic just gets dropped. There's no firewall rule to handle the forward via external IP address loopback.
So I set up a forward, and of course, that was a stupid thing to do. Every other https service in the world suddenly and unceremoniously disappears.
So I change the forward to only be something looking to loopback via my external IP.
But the external IP is dynamic. The router will update the dyndns record, but it will not update its own firewall rule. I'd have to do it manually every time it changed. Very far from ideal.
But inspiration struck! I have my own DNS server! (pihole).
As of now, thegoatery.dyndns.org from within my internal network resolves to the IP address of the friendica box on the VLAN.
Done.
In conversationabout a year ago from thegoatery.dyndns.orgpermalink
Attachments
1. Untitled attachment
2. No result found on File_thumbnail lookup.
  The Goatery | Home
3. Untitled attachment
4. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice