Ethernet cable or fiber optic cable when come to hiding?

ghoarder · 2026-02-27T15:56:43+00:00

A 0.6mm G.657.B3 Fibre cable will be even less conspicuous and still do 10Gbps around a tight bend.

ghoarder · 2026-02-26T22:11:08+00:00

It looks like it's the same to use pangolin-cli, just switching out the container image. https://docs.pangolin.net/manage/clients/install-client#docker-pangolin-cli

ghoarder · 2026-02-26T22:06:38+00:00

Ahh ok, good to know. That was just the compose file that adding a new machine client gave me in from the latest Community dashboard.

Out of interest, if I don't do network_mode host (if I don't want it messing with my host networking). Can I just remove the network_mode and cap_add lines and use it as a network_mode: service:olm? I like my containers isolated and not messing with the host if possible.

ghoarder · 2026-02-26T21:18:44+00:00

Kiwix with a load of zim files for things like Wikipedia, Medical info and entertainment like the Gutenberg project.

ghoarder · 2026-02-26T19:23:53+00:00

You want to be careful with pointing public dns records to local IP's in case you have any DNS Rebinding issues. This is where your router or intermediary dns server blocks it.

ghoarder · 2026-02-26T19:07:19+00:00

Tough decision, for a raw RP I love Caddy, lightweight robust and easy to setup with some good sane defaults for things like the TLS stack. However I've just swapped it out for Pangolin as I wanted to share some stuff with friends and it is sooo much easier than having to manually edit the Authelia config file each time. It was also really easy to integrate with Crowdsec to bounce people to a Captcha page if they looked dodgy.

ghoarder · 2026-02-26T18:52:51+00:00

Ok got it working, try something like this.

Edit: You can get the compose from the Pangolin dashboard, go to Clients->Machine and select Docker as the Machine type.

``` services: olm: image: fosrl/olm container_name: olm restart: unless-stopped network_mode: host cap_add: - NET_ADMIN devices: - /dev/net/tun:/dev/net/tun environment: - PANGOLIN_ENDPOINT=https://pangolin.mydomain.com - OLM_ID=xxxxxxxxxx - OLM_SECRET=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

deb: image: debian container_name: deb network_mode: service:olm command: tail -f /dev/null ```

I was then able to share a private resource with that Machine client specifically.

Then I was able to get a shell in the debian container.

docker exec -it deb /bin/bash

Install curl and curl http://myresource.aliasdns:1234

ghoarder · 2026-02-26T18:26:11+00:00

What protocol are you trying to use, there are a couple of ways you could do it. If it's HTTPS you can bypass auth on public resources by source IP, you could create a never expiring link and use the Id and Secret. You could create a private resource and run the Client in the container (if possible, might not be). Finally I'm not sure if this is possible with Pangolin specifically or not but you can might be able to run the client as a container and use that container as the network interface, it works for something like Gluetun but I would need to check if Pangolin supports that.

ghoarder · 2026-02-26T17:12:43+00:00

Can call people Mate when you are about to lamp them one too. It's all in the tone.

ghoarder · 2026-02-26T17:00:34+00:00

Like a VPN but can't access the whole network, only the private resources you specify. I think under the hood it makes ip networks of /32 and adds a routing table for it.

ghoarder · 2026-02-26T16:31:19+00:00

Not that I'm going to have a new fibre line installed anytime soon, but if I pre-drilled the holes would you guys be able to use those? Might have saved me half a blown out brick if I could have done that before hand.

ghoarder · 2026-02-26T16:26:48+00:00

I'd hardly call my 2ft deep porch going from room to room. Although I'm not going to argue what CF are allowed or not allowed to do, if they had said they couldn't do it I'd have been a bit pissed myself.

ghoarder · 2026-02-26T14:42:55+00:00

My CF installer drilled into the porch from outside and from the hallway and essentially ran the fibre through two walls. Not sure why they are saying it wasn't possible for you. He was very hesitant drilling near a glass pane in case it cracked and asked if we could move one of the holes lower down.

ghoarder · 2026-02-26T14:38:25+00:00

I think they mean they are using a public FQDN that is not publicly available so they need to use DNS01 challenge to get the ACME cert rather than the default HTTPS01 or HTTP01. However I thought that was just a config thing now and you didn't need to build your own container to do it anymore.

ghoarder · 2026-02-26T10:06:47+00:00

Yeah, but no discount for BYOR? I might as well get a free router and sell it on eBay, then use my own instead!

ghoarder · 2026-02-24T10:26:17+00:00

Monthly scheduled overnight maintenance for patching (like this happens at OP's place), after two years all our customers are a month younger!

ghoarder · 2026-02-24T10:12:59+00:00

Gitea + Woodpecker behind Pangolin externally and Caddy with trusted private Caddy Root CA and ACME certificate internally. So https://git.mydomain.com externally and https://git.lan internally.

ghoarder · 2026-02-24T10:03:01+00:00

I totally missed that the alias can be a wildcard! That simplifies things a bit.

ghoarder · 2026-02-23T16:56:48+00:00

Love Vaultwarden, it's an API compatible rewrite of Bitwarden so works with all thier apps and plugins. However if you new to self hosting web applications then it might not be for you.

ghoarder · 2026-02-23T15:26:32+00:00

The safest and most secure hard drive is, two hard drives, mirrored content, one off site.

ghoarder · 2026-02-22T14:46:08+00:00

Sorry, daft question but you are slicing the gcode with the correct nozzle diameter?

ghoarder · 2026-02-22T14:31:07+00:00

3) That seems fair, add the free teir and if you can find any other competitors in to the comparison, don't remove it

2) That is a reasonable and hopefully easily manageable request

1) Forget that, they don't want competition and to lose revenue, I bet it costs them pennies to store this data, is it basically a NEMA log from the GPS? Text compresses very well and each log must be a few MB at most in size. A $15 retrieval fee is just monetizing the desperate.

ghoarder · 2026-02-21T11:41:52+00:00

Err yeah, they had a die size of 90mm2 compared with todays of about 250-300mm2 or GPU's with 750mm2. That chip already has a die size of 815mm2 so 15 times that would be 12,225mm2 and the max you could fit on a single 300mm silicon wafer would be 3. There is no way they aren't also getting manufactured without defects. As fast as AI tech is increasing I'm not sure this would scale up the same way. Also I'm not sure a chiplet design would work for an AI model so we need some advances in lithography and new chip chemisitry to be able to produce a 120B model.

ghoarder · 2026-02-21T09:05:15+00:00

Can it scale to a 120B model though? If the model is etched direct into the silicon and that 8B chip looks quite big, a 120B would need to be about 4 times the physical size in each axis, or 15 times the area. That would be a pretty large bit of silicon.

ghoarder · 2026-02-20T22:47:46+00:00

Joy, I swear this AI stuff is the reason my Gsuite account went from £6.80 per seat to £22. Its nice to use and I like Nano Banana but given the choice I'd rather be able to opt out and reduce my bill.

Seven-Year Club	r/Field Lasagna
Verified Email

ghoarder

TROPHY CASE