Contrarianism

There is a subsection of mp3 players that have enough power to drive high impedance headphones, Hifi players, some call them. They still make decent sales to their customer base of particular people.

…not Creed tho?

Science music… Rush, maybe.

Palestinians are not irrelevant, dude.

downvoted you too, thanks.

and no, you’re right. The Zionist state spends billions annually to perpetuate their victim complex. American media and our educational system is rife with their propaganda and pro-Israel rhetoric. You knew that.

and lived!?

Oh, that makes it ok, then.

the Jews(Israel) advocate for Zionism which I’d argue is equivalent in danger to some fundamentalist Christians seeking white nationalism.

Ironic

You have entire corporations, nation-wide that are backed by religious nuts and racists, entire state-sized organizations of assholes paid from the bottom-up, and unless science and education has the same backing, we will lose.

When’s the last time a rock band was labeled a “science band”, but you can name four or five christian bands without even listening to them?

There are entire record companies and publishing houses that do nothing but spread more of it, interest groups in the billions of dollars that circulate faith and blindness. Even philanthropy, and a yelling preacher on every corner, sometimes across the street from one another, hospitals, nonprofits, foundations, you name it.

Christianity and Judaism is so overblown in support, we shouldn’t expect anything less than absolute ignorance. Look what’s pushing it.

Well, yeah.

Vote with your wallet. I improved gaming by not buying a Switch 2.

Oh, it just modern Obsidian, no one is going to buy it anyway.

Came and went.

the VPS uses the pi-hole through the tunnel

The VPS is Pihole, the dns for the server side is 127.0.0.1. 127.0.0.1 is also 10.x.x.1 for the clients, so they connect to that as the dns address.

server dns - itself

client dns - the server’s wg address

On the local side, the pi-hole is the DNS for all the services on that subnet and each service automatically populate their host name on pi-hole. I can configure the DNS server in my router/firewall (OPNSense in my case)

Only if your router/firewall can directly connect to wg tunnels, but I went for every machine individually. My router isn’t aware I host anything at all.

So when I ping service.example.com, it goes through the VPS, which queries the pi-hole through the tunnel and translates the address to the local subnet IP if applicable.

Pihole (in my case) can’t see 192.x.x.x hosts. Use 10.x.x.x across every system for continuity.

So when I have the wg connection active and my pi-hole is the DNS, every web request will go through the pi-hole. If the IP address is inside the range of AllowedIPs, the connection will go through the tunnel to the service, otherwise, the connection will go through outside the wg tunnel.

Allowed ips = 10.x.x.0/24 - only connects the clients and server together

Allowed ips = 0.0.0.0/0 - sends everything through the VPN, and connects the clients and server together.

Do the top one, that’s how TS works.

My entire setup might not be your entire setup, I have the basic functionality of connecting multiple systems into one mesh network. That’s all I needed so it’s all I did.

The vps is the wg server and my home server is a client and it uses pihole as the dns server. Once your clients hang around for a minute, their hostnames will populate on pihole and become available just like TS.

You do have to set available ips to wg’s subnet so your clients don’t all exit node from the server, so you’ll be able to use 192.168.0.0 at home still for speed.

As for NPM, run it on the proxy, aim (for example) Jellyfin at 10.243.21.4 on the wg network and bam.

Pihole and pivpn get along like peas and carrots.

Make the “available ips” your pivpn subnet and ta-da, the mesh functionality of tailscale without the entire connection.

Want to exit node from the server? Just change the value back to 0.0.0.0/0.

Pivpn is really easy, and since pivpn is just scripts, it always installs current wireguard even if they lax on updating pivpn that often.

Same, my Hetzner proxy running NPM, with pivpn and pihole is doing all it needs to do for $3 and some change.

My only open ports on anything I own are 80, 443 and the wg port I changed on that system. Love it.

I think there’s room in the world for a selfhosted, foss version of their software, even if a little simplified.

deleted by creator

I just replaced my entire setup with base wireguard as a challenge, easier than I expected it to be, and not hard to mimic tailscale.

To Microsoft, everything is an Xbox.

At least that’s their marketing atm.