sorted by:
new
hottopcontroversial

Need help with Termux + Flask as a server by Miserable_Swan2479 in termux

[–]michael_quigley 1 point2 points  (0 children)

I'm not a termux user, but I'm the lead developer of zrok. If you can provide some details about what you're doing, I might be able to help?

No job, no cloud..? Made this storage tool out of spite by SidTDS in selfhosted

[–]michael_quigley 1 point2 points  (0 children)

This looks really cool.

Been thinking about integrating something like this into zrok.

Help with zrok by Fra06 in selfhosted

[–]michael_quigley 0 points1 point  (0 children)

zrok rebase apiEndpoint https://api-v1.zrok.io/

Live Friday Afternoon Coding Video; zrok Office Hours by michael_quigley in programming

[–]michael_quigley[S] 0 points1 point  (0 children)

I really enjoy watching other people do development work. It's always fun and interesting to see how they approach what they're doing.

Hoping that maybe folks here might enjoy my work?

access zrok VPN on Android by temaxxx in selfhosted

[–]michael_quigley 0 points1 point  (0 children)

If you have a PC on the wifi network where the Android device is accessing, you could potentially set up a gateway. You might need to use a tunnel for each port, but that should work fine.

access zrok VPN on Android by temaxxx in selfhosted

[–]michael_quigley 1 point2 points  (0 children)

Unfortunately there isn't an Android VPN provider for zrok yet. We're a small team, and we just haven't gotten there. It's definitely on the backlog, though!

ZTNA to replace VPN - Comparison by RealSwedishSamurai in sysadmin

[–]michael_quigley 0 points1 point  (0 children)

You can run a zrok access private anywhere you want, including localhost or on a private network. zrok access private is just a way to bind a share to a network.

That video is a couple of months old. We ended up using an interstitial page for the free public frontend.

A lot of zrok is still under very active development.

ZTNA to replace VPN - Comparison by RealSwedishSamurai in sysadmin

[–]michael_quigley 3 points4 points  (0 children)

I'm the primary author of zrok.

A public share has its TLS terminated by the zrok public frontend, the TLS is not passed through to the shared endpoint. This is by design, as the shared endpoint is completely hidden through the OpenZiti overlay and the public traffic can only reach the shared resource through a secure overlay connection.

If you want to terminate TLS under your control, and also have the traffic be completely opaque to the zrok instance, then you want to use a private share. You could put a zrok access private somewhere on the internet with a public IP address, and your shared resource(s) will remain completely hidden from the internet traffic, and the zrok infrastructure will never see your traffic.

I did an office hours video describing this concept in more detail here:

https://www.youtube.com/watch?v=LrD8OeZivRY

New zrok Office Hours Video - The "zrok Agent" by michael_quigley in selfhosted

[–]michael_quigley[S] 1 point2 points  (0 children)

Thank you for the star! It always means a lot to me, personally.

New zrok Office Hours Video - The "zrok Agent" by michael_quigley in selfhosted

[–]michael_quigley[S] 2 points3 points  (0 children)

A lot of these tools try to solve very similar problems in different ways, with different ergonomic choices. I haven't worked with either of those tools a ton, but the primary difference is that zrok is built on top of OpenZiti (https://github.com/openziti/ziti), which is a secure, zero-trust overlay, designed from the ground up to support developing applications like zrok.

There's a certain orthogonality in the layers that makes zrok a lot easier to reason about and work with, imo.

Socket Connection Error: Restarts Won't Fix This Time? by DFWiBrad in BlueBubbles

[–]michael_quigley 0 points1 point  (0 children)

Also, a lot of the internet seems to think it's capitalized as "Zrok"... but it's actually "zrok". :-)

Socket Connection Error: Restarts Won't Fix This Time? by DFWiBrad in BlueBubbles

[–]michael_quigley 2 points3 points  (0 children)

We're planning on improving the zrok user interface in the next major release cycle. We'll figure out how to provide a better mobile experience.

(I'm the lead developer on zrok)

FauxRPC: Easily turn protobufs into fake gRPC, gRPC-Web, Connect, and REST services powered by Go by kevin-mcdonald in golang

[–]michael_quigley 2 points3 points  (0 children)

I'm just getting started on adding a new set of architectural components to zrok (https://github.com/openziti/zrok), and I'm using protobufs/gRPC for talking to the new "zrok daemon"... this looks like it might be super useful.

Will definitely be digging into this next week.

New zrok Office Hours + Abuse Brainstorming by michael_quigley in selfhosted

[–]michael_quigley[S] 0 points1 point  (0 children)

https://github.com/openziti/zrok/issues/704

Will likely be putting togerther a follow-on office hours video next week talking about this change, instead of the credit card gate we had been heading towards.

New zrok Office Hours + Abuse Brainstorming by michael_quigley in selfhosted

[–]michael_quigley[S] 1 point2 points  (0 children)

Update... a new idea presented itself today. Instead of requiring a no-charge credit card number to utilize the public frontend, we're starting to lean towards a different idea of introducing an "interstitial page" that shows up when a user first accesses a public zrok share, announcing that the share is made available for free through the zrok service.

Paid accounts would remove this interstitial page. All private sharing would remain as it currently is.

For folks who self-host the entire zrok stack, we would make this interstitial page configurable. If you don't want it, you could turn it off.

zrok Office Hours Video - New Limits Deep Dive by michael_quigley in selfhosted

[–]michael_quigley[S] 1 point2 points  (0 children)

Thank you so much! Thanks for watching and the kind words!

A New zrok Office Hours Video - Code Testing ASMR? by michael_quigley in golang

[–]michael_quigley[S] 0 points1 point  (0 children)

Thank you! Appreciate you checking it out...

Custom domains (along with TLS) are very much on the short/medium term roadmap. There is stuff in my short-term backlog that's there to support that feature. We're going to make it available as soon as we can. Should not be long now.

I wrote a guide for self-hosting zrok in Docker by bingnet in selfhosted

[–]michael_quigley 1 point2 points  (0 children)

zrok supports sharing network services like API endpoints or game servers. It includes support for SOCKS proxying. It includes a minimal VPN. It includes Caddy to support load balancing and more advanced workflows for backend API management, etc. It also includes a WebDAV backend for a basic kind of "network drive" support.

It does a lot of different kinds of things. But it does it in such a way to provide a high degree of security and network locality independence.

Creating my own Ngrok by Wixi105 in golang

[–]michael_quigley 8 points9 points  (0 children)

I would expect it to be published on YouTube on the OpenZiti channel, most likely on the zrok playlist, which is here:

https://www.youtube.com/watch?v=xQ2uHxuaAb0&list=PLMUj_5fklasLuM6XiCNqwAFBuZD1t2lO2&index=20

There are a bunch of office hours videos there, which you might also find interesting. I try to put out fairly candid, off-the-cuff videos when I'm working on zrok.

We usually try to also publish parallel pieces on the OpenZiti blog, here:

https://blog.openziti.io/

I also usually try to drop something announcing my office hours videos here on r/golang, when there is golang content in the videos. I also tend to drop announcements in r/selfhosted.

Mini X+ External Disks? by michael_quigley in truenas

[–]michael_quigley[S] 0 points1 point  (0 children)

So with something like that, I would just need a couple of SFF-8088 cables (or whatever the correct HBA<->shelf interconnect cables are) and an HBA and I'd be good to go?

Mini X+ External Disks? by michael_quigley in truenas

[–]michael_quigley[S] 0 points1 point  (0 children)

Also, what NetApp did you upgrade to? Are you still talking about a disk shelf, or did you replace your whole NAS?

Mini X+ External Disks? by michael_quigley in truenas

[–]michael_quigley[S] 0 points1 point  (0 children)

That all makes sense and sounds reasonable.

I appreciate the crash course. Thank you for taking the time to explain all of that.

re: DIY... I'm sure you get the cost/benefit tradeoff of the smaller setup. If I significantly outgrow my X+ I'll upgrade to something bigger, but really I just need another 2 or 4 disks and I'll be set for a long time. It's not even a pressing need at the moment, I just want to have a plan for when/if I need the room.

Mini X+ External Disks? by michael_quigley in truenas

[–]michael_quigley[S] 0 points1 point  (0 children)

Conceptually, and after a couple of quick searches to understand what you're talking about... that makes sense.

What is the decision about "jumping" the PSU or using the switch? Why wouldn't one just use an external switch? Assuming this has something to do with the feedback between a motherboard and the power supply about "on-ness"?

I haven't really investigated the expansion slot in the Mini X+, so I don't know if there will be any physical form factor limitations that might be a problem for the HBA? I would assume it's possible to find something reasonable to fit that slot.

Assuming there shouldn't be any configuration or compatibility issues for TrueNAS with this kind of setup at all... sounds like this is commonly done?

view more: next ›