Pretty much I have caddy on a VPS that's pointing to my internal IP using a tailscale tunnel. You are still exposing the web gui to the Internet so I just changed authentication to OAuth to mitigate since risk. There is still a possibility of attacks via zero days, but my immich is on a VM and I'm creating firewall rules to just allow certain ports out.
randombullet
You will need a VPS as your other endpoint
You need to go very niche next time! Wonder if you can make it to a day without the right answer.
I assume it's a Silicone Sealant tool
Geneva convention only applies to losers. Winners write history.
That's kinda my issue as well. I have a core 24 port L3 switch that's multigig POE and a 3 disk NAS.
The NAS I could technically downsize with a little bit of tinkering and money.
The switch will be hard to miniaturize.
Thankfully my router is already 1/2U and 1/2 width so that's easy to migrate.
How are you accessing the fediverse?
Germans say 1 hundred 6 and 9 ten... Because Germans like to be special. Learning German makes me appreciate Chinese and English counting. Although the -hundred delimitation confuses foreign speakers. Such as 15-hundred is actually 1,500
Chinese say 1 hundred 9 ten 6 as an added data point
I usually say if you have time can you do XYZ? That way if they don't want to, it's assumed that they didn't have time which is fine. They always have a way out
IP address and Domain Names
It's hard to explain from scratch.
Caddy is a reverse proxy software that essentially redirects traffic from a certain port to another port. For example external:port => internal:port. It also enables SSL encryption meaning everything will be encrypted en route between the external and the user.
VPS is a virtual private server. Just someone else's computer you can expose to the Internet.
Tailscale is a mesh VPN that uses wire guard as its transport. I use this to tunnel between my VPS and my Immich server to hide my home IP and to allow encrypted traffic between my Immich server and my VPS.
A zero-day (also known as a 0-day) is a vulnerability in software or hardware that is typically unknown to the vendor and for which no patch or other fix is available. The vendor thus has zero days to prepare a patch, as the vulnerability has already been described or exploited.
There's no fix other than security through layers.