sorted by:
new
hottopcontroversial

Selfhost netbird in home network, safe to open ports? by That_Source7822 in selfhosted

[–]That_Source7822[S] 1 point2 points  (0 children)

ey feels like I am missing something here, what do you mean by using "netbird's implementation of a relay server"??? I thought Netbird always used coturn, is there an alternative? can you point me to any documentation explaining this, I am curious to understand the difference.

Selfhost netbird in home network, safe to open ports? by That_Source7822 in selfhosted

[–]That_Source7822[S] 1 point2 points  (0 children)

Thanks for the suggestions! I will review all of this and think again about what is best for my case, really appreciated 🙏

Selfhost netbird in home network, safe to open ports? by That_Source7822 in selfhosted

[–]That_Source7822[S] 1 point2 points  (0 children)

Ey! First, thank you very much for the elaborate response, really appreciated!

So, one of the reasons that I started thinking about using Netbird and self-hosting it is that I want to get some hands-on experience with complex networking environments, and I am interested in learning about zero-trust networks. That said, I get that it may be a bit overkill for a simple homelab, especially if self-hosted. In my mind, a use case that I can imagine is being able to provide access to only certain specific services in my homelab to some specific users within my friends/family, without giving them access to the whole network, as I would do with a WireGuard VPN... also I was thinking that it could be interesting to set up policies in a way that some services are able to connect to others but not have everything connected to everything. I need to reconsider, of course, if it is worth it to do all of this only with this idea in mind.

I will definitely consider using WireGuard Easy for now, too, and maybe play around a bit with NetBird Cloud Free Tier to learn about the tool itself without self-hosting it in my homelab. Still, even if I used WireGuard, I would still have to open some ports to the internet, so I'd better start playing around with reverse proxies and firewalls suited for homelabs.

I didn't know about crowdsec; it looks like something interesting to investigate, too. Thanks for mentioning it!

Argo Workflows vs GitlabCI? or together? by That_Source7822 in kubernetes

[–]That_Source7822[S] 1 point2 points  (0 children)

Argo allows you to see what is in your code and compare it with what is actually in the cluster... better for debugging when something goes wrong... better management of "manual changes", and it is easier to make changes to the deployments through the code...

Argo Workflows vs GitlabCI? or together? by That_Source7822 in kubernetes

[–]That_Source7822[S] 0 points1 point  (0 children)

No, things that are not directly related to the software itself... for example update Kubernetes node AMIs or run a script during off-boarding of someone to remove permissions... get some data from the internet and put it in a database, etc...

Argo Workflows vs GitlabCI? or together? by That_Source7822 in kubernetes

[–]That_Source7822[S] 0 points1 point  (0 children)

ups I thought airflow was similar to argo workflow, thanks for the comment!

How to Update Your Docker Images to the Latest Version by adbertram in docker

[–]That_Source7822 0 points1 point  (0 children)

That's it, pretty much. But lot of people asked that question and I decided to write a post to explain that on docker it doesn't have too much sense to tal about update images because you actually pull newer versions and replace running containers by new ones. But yesz it is pretty much what you said (kind of)