ssh-punchhole
Bypass_CGNAT
ssh-punchhole | Bypass_CGNAT | |
---|---|---|
8 | 77 | |
42 | 428 | |
- | - | |
5.1 | 0.0 | |
about 1 month ago | over 1 year ago | |
Smarty | Shell | |
The Unlicense | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ssh-punchhole
-
One mysql as central database or each stack have their own database
At home, just a bunch of AlmaLinux VMs with K3s, using MetalLB for LoadBalancerIPs in my LAN and ssh-punchhole to forward ports from an externally hosted VPS to my local ingress-nginx and other things, so my stuff is externally available.
-
Is it safe to use Cloudflare tunnels with a matrix home server?
Get yourself a cheap VPS and then try something like https://github.com/TamCore/ssh-punchhole (which i hacked together, because everything else just looked too bloated for my taste). That way you can host everything at home and don't have to forward any ports, as the tunnel is established from within your network :)
-
Accessing Server without portforwarding
I've published my setup for that case as a container image: https://github.com/TamCore/ssh-punchhole.
-
Do you use cloudflare tunnel?
I've published my setup on Github: https://github.com/TamCore/ssh-punchhole Even if you don't use Docker, you could still basically use the script as standalone. I just wanted to have everything neatly packaged :)
-
Wanting to switch over from cloudflare tunnels
I use a VPS as my public endpoint, but the tunnel is established from my network, as it's based on reverse SSH port forwarding. So no port forwarding in my router required and would even work with CGNAT and whatsoever. Sample configs I've published under https://github.com/TamCore/ssh-punchhole
-
bitwarden selfhosted security
If you don't want to mess around with port forwarding, I'd recommend just getting a cheap VPS somewhere close to you, and hosting Traefik and something like my ssh-punchhole (see https://github.com/TamCore/ssh-punchhole) for tunneling inbound traffic to your service.
-
VPN replacement: Cloudflare Tunnel. I've created an article (my first ever) with instructions on how to configure cloudflared with docker-compose (Raspberry Pi, ARM7 arch) to get rid of VPN and fall in love with tunneling. It's free!
Using haproxy (lightweight and quickly configured) was an easy fix for that issue. I've included the relevant parts from my configs in https://github.com/TamCore/ssh-punchhole/blob/main/README.md :)
Bypass_CGNAT
-
CG NAT Pains
I used this software with Oracle free tier, it works great: https://github.com/mochman/Bypass_CGNAT
-
Need your help to determine if this this possible (Wireguard, External Access)
Now I want a selfhosted version of this. Since, I'm behind a cgnat connection, I have create a compute instance on Oracle Cloud as that provides a static IP. However, following a the guide I have seen to make wireguard bypass cgnat (https://github.com/mochman/Bypass_CGNAT) , it seems that: - This system makes it so that everything coming into the vps is passed thorugh to my server.
- UnRaid first-time user questions
- Vpn behind NAT
-
Bypassing NAT
Useful guide and a couple of installer scripts to Bypass CGNAT with Wireguard at https://github.com/mochman/Bypass_CGNAT
- How can I bypass CGNAT
- Next level data privacy with easy, free and secure self hosting at home
- Fully Proxying a Home Server via VPS
-
Help setting up a VPS to access publicly my homelab and self-hosted services
And I found this today https://github.com/mochman/Bypass_CGNAT which seems to be what you are looking for
-
How many are happy with TMobile internet service?
I basically followed this guide to set everything up: https://github.com/mochman/Bypass_CGNAT/wiki
What are some alternatives?
frp - A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
ZeroTier - A Smart Ethernet Switch for Earth
Adminer - Database management in a single PHP file
cloudflared - Cloudflare Tunnel client (formerly Argo Tunnel)
spike - :mega: A fast reverse proxy written in PHP that helps to expose local services to the internet
GoodbyeDPI - GoodbyeDPI — Deep Packet Inspection circumvention utility (for Windows)
proxy.py - ⚡ Fast • 🪶 Lightweight • 0️⃣ Dependency • 🔌 Pluggable • 😈 TLS interception • 🔒 DNS-over-HTTPS • 🔥 Poor Man's VPN • ⏪ Reverse & ⏩ Forward • 👮🏿 "Proxy Server" framework • 🌐 "Web Server" framework • ➵ ➶ ➷ ➠ "PubSub" framework • 👷 "Work" acceptor & executor framework
tailscale - The easiest, most secure way to use WireGuard and 2FA.
v4raider - Wireguard + Traefik docker-compose file. Use VPS IPv4 Address in your homelab.
headscale - An open source, self-hosted implementation of the Tailscale control server
nextdns - NextDNS CLI client (DoH Proxy)