this post was submitted on 09 Feb 2024
14 points (100.0% liked)

Selfhosted

40347 readers
340 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

I have a client with locally hosted security cameras. There is a DVR box that has a port open and a 3rd party app you can view the cameras from. Traditionally we have been forwarding the port to the WAN via the router there. Its a restaraunt btw.

When the ISP upgrades the router every few years there's a huge headache trying to get the ports back open and bridging the modem and router blah blah blah. Not only this, even though they are supposed to have a static wan ip, it does change from time to time.

What i would like to do is plug in a raspberry pi on the network and forward the DVR's ports somewhere accessable.

Im thinking of something along the lines of wireguard, but just for a single ip/port that i can tunnel over ngrok. Seems doable but i'm having trouble finding the proper terms to google. Port forwarding generally brings up router config, and tunnelling seems to expect you to be on the device who's ports you wish to access.

Any advice?

you are viewing a single comment's thread
view the rest of the comments
[–] BearOfaTime@lemm.ee 1 points 9 months ago* (last edited 9 months ago)

Yea, gotta turn off using an Exit Node that's on that network.

Also, sometimes Tailscale's Magic DNS seems to override other name resolution and will route over Tailscale instead if another network (eg LAN). You can avoid this by using IP addresses instead of DNS if you have issues.

For example, when I'm home and try to RDP to my server, sometimes TS DNS resolves the name and routes over TS, although it's on the same LAN. If I RDP via the IP address of my server, it's noticeably faster. If I turn off Tailscale, it's faster, even using DNS, because then it resolves to the local, not TS, address.

So basically, if I disable/re-enable TS on my laptop, DNS works fine. Think it's just a bug.