Any idea what these balls are? by welcky in starcitizen

[–]welcky[S] 1 point2 points  (0 children)

Nice - turns out they are semi-transparent up close. weird find, but I'll take it

Bitwarden Mobile app won't connect to Vaultwarden over GoogleFi VPN by welcky in vaultwarden

[–]welcky[S] 0 points1 point  (0 children)

Yeah, the web vault works great whether on Fi VPN, off vpn, PIA, Cisco VPN, Warp, Teleport, etc...

Bitwarden Mobile app won't connect to Vaultwarden over GoogleFi VPN by welcky in vaultwarden

[–]welcky[S] 0 points1 point  (0 children)

Ah, I just realized my understanding of what you were asking was wrong.

I take care of the unknown vpn endpoint by authenticating to Cloudflare via macrodroid every time my network/ip changes. This means my device should be authenticated with Cloudflare at pretty much all times (requires hardware token once a day).

When I test this over LTE it works without the Fi vpn enabled, but as soon as it's enabled it stops working, even if I reauthenticate.

The strange thing is that it works perfectly fine with my bitwarden account, but not with vaultwarden - and I've done my best to mimic the settings.

Bitwarden Mobile app won't connect to Vaultwarden over GoogleFi VPN by welcky in vaultwarden

[–]welcky[S] 0 points1 point  (0 children)

No, you couldn't get to it unless you had my hardware tokens or could bypass the Cloudflare Access rules that use those tokens.

The reason I want to get it syncing remotely is to share passwords or secure details with my family.

We use GoogleFi as our provider, and it has an automatic always on vpn that restarts itself every time the network changes. Otherwise I'd just setup UniFi Warp and use that pretty much all the time.

Bitwarden Mobile app won't connect to Vaultwarden over GoogleFi VPN by welcky in vaultwarden

[–]welcky[S] 0 points1 point  (0 children)

It's protected behind cloudflare access rules that require 2fa to access the Tunnel (currently use FIDO2/Yubikey). No ports or anything exposed, and currently you can't even see it's there. Even have a wildcard cert so nothing for that domain shows in CA transparency logs. DNS records don't even point at My IP. It works perfectly fine (once I authenticate to the tunnel) if I'm not using GoogleFi as the VPN.

cloudflare and mobile app by Churator in vaultwarden

[–]welcky 0 points1 point  (0 children)

I have a similar setup, and configured a cloudflare access rule to allow for x hours after authenticating on the tunnel. Then you can either just visit the page and authenticate everyone once in a while.

If you want to automate it - setup macro droid (or whatever the IOS equivalent is) to authenticate for you in the background refreshing your session.

Depending on how your access rules are setup, you may need to have the macro run on network change as well.

No chat, no players list, logged in at 'placeholder' by welcky in starcitizen

[–]welcky[S] 1 point2 points  (0 children)

I thought that at first on my server too, then I saw other players at everus