Evkob (they/them)

Free as in freedom, not free as in beer.

I can only assume it’d be a bridge for Nextcloud Talk.

I was having issues getting my Android device to use my local DNS server over VPN, what worked for me was setting it up through RethinkDNS. There’s a setting to prevent DNS leaks by capturing all traffic on port 53 and directing it to the DNS server you set. It doesn’t feel like an elegant solution but hey, it works.

Note, you’ll have to make sure your private DNS setting is off, in the internet section of the system settings.

From a quick Lemmy search, I’ve seen Njalla and 1984.hosting being recommended for these kinds of uses.

I’m not sure how it would do multiple languages however, as I’ve not tried it.

As someone who types the majority of my thoughts in Frenglish, Heliboard is the only FOSS keyboard I’ve found that would remotely accommodate that while still having useful autocorrect.

I don’t have traditional TV service so I’m unfamiliar with what “shit” Google is pushing through the TV app. However, if it’s what I suspect (ads), a possible option would be using a local DNS server (like pi-hole or Unbound) to block Google domains on your TV.

I’d rather not open ports I don’t have to. I don’t see why I’d have to open a port when Unbound works on my local network and I have access to my local network via Wireguard. I can access a whole slew of services through that one Wireguard port, why wouldn’t Unbound work?

Thanks anyway for trying to help, bud.

I could do that, but I want to avoid opening ports on my router’s firewall apart from the one necessary for Wireguard. I can access all my other stuff through Wireguard, but I can’t wrap my head around why it seemingly can’t access Unbound on the local host.

The reason for the VPN is to have access to my Unbound DNS on my phone from anywhere, not only my local network. If I just wanted to configure the DNS on my local network, I’d set up static IP for my network in Android’s settings and input the DNS server manually. This works fine when I set it up, but like I said I want to use Unbound on my phone anywhere via Wireguard.

I’m not sure what’s the second thing you want me to clarify! Sorry for the confusion, I appreciate you trying to help out :)

Android doesn’t let me add an IP address under private DNS, it needs to be a domain (like dns.quad9.net rather than 9.9.9.9).

I tried adding a quick DuckDNS domain to my reverse proxy towards port 53, where Unbound is listening. It works, as in I can nslookup using the DuckDNS domain on my desktop (or on my phone when not connected to Wireguard) but if I try to set that domain as my private DNS on Android it says it can’t connect, whether or not I’m on my VPN.

I tried this, as well as manually editing the DNS servers on the client side, but whether I use my host’s private local IP or my host’s docker interface IP it doesn’t seem to work.

I think you misunderstood part of my post, because there’s only one VPN tunnel, from the WG client on my phone to the WG server on my laptop.

I want my phone to use the Unbound DNS server, which is hosted locally on the same laptop that runs my Wireguard server.

EDIT: Note, I don’t want to setup the DNS router-side via DCHP because I want to use Unbound to block a bunch of stuff that my roommates use, like Facebook.

When connected through wireguard can you access anything on the local network?

Everything works as expected with Wireguard otherwise, I can ssh into my server or my desktop, and access the other things hosted on my server (although these are all through Docker, which is why I suspect container isolation to be an issue).

Does this issue also happen when you’re on another network and vpning back?

Yup, same issues whether I’m on the local network, the WiFi at work, or on LTE.

It uses the MIT license!

Let’s Encrypt is run by a non-profit (Internet Security Research Group), they list their major sponsors and funders on their website.

According to their stats page, Let’s Encrypt’s certificates are used by around 500M domains.

A lemmy instance hosted behind Tailscale would be unable to federate, no?

I’m not the person you replied to, but they say in their comment they use Get RSS Feed URL.

Here’s a short blog post that summarizes how to use Full-Text RSS with FreshRSS. It’s a bit of a pain to add new feeds but it makes for a smooth experience afterwards.

Otherwise, you could always just use RSS clients that have the ability to fetch full articles, Read You on Android and Fluent Reader on desktop both can do this.

It depends on if you want to access it from anywhere (or give others access), or if you’re only accessing your server from specific devices.

Since I only ever access my server from my phone or my desktop, I use Wireguard via wg-easy. You set it up as a docker container on your server and it gives you a neat web UI (defaults to port 51821) from which to add Wireguard clients. Once connected through Wireguard, you can access your services as if you’re on the server’s local network.

Note, you’ll of course have to open up a port for Wireguard on your router for this to work, the default being 51820.