• 0 Posts
  • 11 Comments
Joined 1 year ago
cake
Cake day: September 19th, 2023

help-circle

  • From what I understand running high bandwidth things like video streaming through cloudflare tunnels will get your cloudflare account banned or charged (which is why they require payment info to setup tunnels).

    Best to keep things like emby, jellyfin, and Plex to tailscale or just open the port.

    Idk how emby works but with Plex I feel pretty safe having port open. Since any logins have to auth though Plex’s servers.


  • Not really directly answering your question here so feel free to ignore me. But if I’m understanding right your setup sounds like a more complicated way of doing what I am.

    I put tailscale on all my devices. And in every docker compose for the ports I do. TailscaleIP:hostport:containerport

    So nothing can be access on local network at all. Only through tailscale. Which I can access from any of my devices locally or remotely without opening a port. All E2E encrypted I’m pretty sure. The only con is having to trust tailscale.

    I do keep Plex port open for friends though.




  • If I’m understanding the question right. This is what Immutable Linux distros do. Such as Nixos, fedora silver blue, and vanilla os.

    I use nixos myself. But its quite different then most distros. The way you config it and install packages. For the better in my opinion.

    Something like silverblue works pretty much the same as normal Fedora except you can’t install packages like you normally would. Because the system files can’t be edited. You mostly use flatpak for everything. Except the system updates. Which you have to reboot to switch to the new updated image. But past images are saved so you can rollback if needed.

    From what I understand Chromebook os is a Immutable Linux distro same as the ones I mentioned. Just with Google with built in.