this post was submitted on 30 Dec 2025
26 points (96.4% liked)

Selfhosted

54297 readers
284 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
26
reverse proxy over vpn without docker? (lemmy.world)
submitted 1 week ago by early_riser@lemmy.world to c/selfhosted@lemmy.world
30 comments fedilink hide all child comments
 

I'm looking into replacing cloudflare with a VPS running a reverse proxy over a VPN, however, every solution I see so far assumes you're running Docker, either for the external reverse proxy host or the services you're self hosting.

The VPS is already virtualized (perhaps actually containerized given how cheap I am) so I don't want to put Docker on top of that. The stuff I'm self hosting is running in Proxmox containers on a 15 year old laptop, so again, don't want to make a virtual turducken.

Besides, Docker just seems like a pain to manage. I don't think it was designed for use as a way to distribute turnkey appliances to end users. It was made for creating reproducible ephemeral development environments. Why else would you have to specify that you want a storage volume to persist across reboots? But I digress.

Anyway, I want to reverse proxy arbitrary IP traffic, not just HTTP/S Is that possible? If so, how?

My initial naive assumption is that you set up a VPN tunnel between the VPS and the various proxmox containers, with the local containers initiating the connection so port forwarding isn't necessary. You then set up the reverse proxy on the VPS to funnel traffic through the tunnel to the correct self-hosted container based on domain name and/or port.

you are viewing a single comment's thread
view the rest of the comments
[–] eli@lemmy.world 3 points 1 week ago (1 children)

Could you explain your setup a bit more? Because my understanding is:

Let's say you have a blog website in your homelab. To access the blog you have to: you go to your VPS's hostname/IP, from there the VPS forwards your request over tailscale to your homelab which then responds with your blog website?

If that's the case, why even have the VPS and instead just use tailscale to access your homelab directly?

Unless you intend to have the VPS be a load balancer in some way? Or a filter/firewall? Or you can't do a static IP for your homelab but you want it to be publicly accessible?

Just trying to understand why you're doing it this way. I love seeing all the crazy ways people can set things up like this lol

[–] dataprolet@lemmy.dbzer0.com 1 points 6 days ago (1 children)

You're right, the VPS only serves the purpose of a static public IPv4 which I can use with a domain.

[–] eli@lemmy.world 1 points 6 days ago (1 children)

Honestly never thought to use a VPS like that before. We've all seen using a VPS as a VPN exit node. Do you run into quota limits on the VPS or Tailscale side? Too many requests/data?

I'm gonna have to look into this for fun lol

[–] dataprolet@lemmy.dbzer0.com 1 points 5 days ago* (last edited 5 days ago) (1 children)

Nah, it's a Hetzner CX23 with 20 TB of included traffic, which I will never exceed. And the setup is actually recommended because you don't expose your actual server but only the VPS. I watched a video from the Headscale devs a few years ago where the recommended this type of setup.

EDIT: btop is reporting 6.72 TB down and 6.43 TB up in the past 329 days of uptime.

[–] eli@lemmy.world 2 points 5 days ago (1 children)

Ah I'll have to look into this then...gotta find a VPS that will hopefully have a Los Angeles location and have decent traffic bandwidth.

[–] dataprolet@lemmy.dbzer0.com 2 points 5 days ago (1 children)

Hetzner has data centers in Virginia and Oregon. ;)

[–] eli@lemmy.world 1 points 4 days ago

Just looked, I guess USA servers only include 1TB of bandwidth, EU gets 20TB included.

Absolutely wild lol.