Selfhosted

51605 readers

294 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.

Resources:

selfh.st Newsletter and index of selfhosted software and apps
awesome-selfhosted software
awesome-sysadmin resources
Self-Hosted Podcast from Jupiter Broadcasting

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago

MODERATORS

ruud@lemmy.world

CannaVet@lemmy.world

Loki@lemmy.world

HybridSarcasm@lemmy.world

devve@lemmy.world

HybridSarcasm@lemmy.hybridsarcasm.xyz

Multi zone and domain setup question. (lemmy.world)

submitted 1 month ago by Dust0741@lemmy.world to c/selfhosted@lemmy.world

5 comments fedilink hide all child comments

I have an expanding homelab that is now including a family members home. I have homeA.com, and they have homeB.com. I manage both, and connect to theirs over Tailscale. Both servers run pihole and traefik. What I want, is to be able to connect to homeB.com from homeA.com. I have a DNS entry in homeA pihole for homeB.com=100.x.x.x (Tailscale ip). So, any device on Tailscale and homeA pihole can access homeB.com.

What I would like, is to make it so only the two servers need Tailscale. So on my laptop, without Tailscale, from homeA, can access homeB.com through the servers Tailscale connection. Is this possible?

top 5 comments

sorted by: hot top controversial new old

[–] SheeEttin@lemmy.zip 9 points 1 month ago

Yes, this is what IP routing does. Your router needs to know where to send that traffic, and the tunnel gateway (your server) needs to accept and route it over the tunnel.

Don't forget that packet responses also need to reach your device.

[–] azron@lemmy.ml 4 points 1 month ago* (last edited 1 month ago) (2 children)

This is what is called a site to site VPN connection. Id suggest just using wireguard without tailscale given the amount of set up you need is minimal. A typical pattern is to connect a site to site VPN on each router of the given network you want to connect. Lots of router software support wireguard nowadays so depending on the software you may just be able to search for your router software + site to site VPN configuration.

That being said tailscale also has docs on this: https://tailscale.com/kb/1214/site-to-site

The routers or computers you are using for this have to support forwarding traffic. With Linux this is pretty straight forward for other OSes I'm not sure how easy it is.

[–] MysteriousSophon21@lemmy.world 1 points 1 month ago

Yep, just enable subnet routes in your Tailscale admin console and check "advertise routes" on both servers - that'll let all your devices use the Tailscale connection without needing the client installed on evrything.

[–] tux7350@lemmy.world 1 points 1 month ago

The routers or computers you are using for this have to support forwarding traffic. With Linux this is pretty straight forward for other OSes I'm not sure how easy it is.

You can get around this by having tailscale installed on the default gateway (router) of each network. It might be quite a pain for OP to change routers at each location. On the plus side, OpenWRT has some other cool features like PXE booting.

Here is an article about tailscale on an OpenWRT router.

[–] SidewaysHighways@lemmy.world 1 points 1 month ago

pangolin might be cool for this?