this post was submitted on 28 Jul 2023
9 points (90.9% liked)

No Stupid Questions

35801 readers
1321 users here now

No such thing. Ask away!

!nostupidquestions is a community dedicated to being helpful and answering each others' questions on various topics.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules (interactive)


Rule 1- All posts must be legitimate questions. All post titles must include a question.

All posts must be legitimate questions, and all post titles must include a question. Questions that are joke or trolling questions, memes, song lyrics as title, etc. are not allowed here. See Rule 6 for all exceptions.



Rule 2- Your question subject cannot be illegal or NSFW material.

Your question subject cannot be illegal or NSFW material. You will be warned first, banned second.



Rule 3- Do not seek mental, medical and professional help here.

Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.



Rule 4- No self promotion or upvote-farming of any kind.

That's it.



Rule 5- No baiting or sealioning or promoting an agenda.

Questions which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.



Rule 6- Regarding META posts and joke questions.

Provided it is about the community itself, you may post non-question posts using the [META] tag on your post title.

On fridays, you are allowed to post meme and troll questions, on the condition that it's in text format only, and conforms with our other rules. These posts MUST include the [NSQ Friday] tag in their title.

If you post a serious question on friday and are looking only for legitimate answers, then please include the [Serious] tag on your post. Irrelevant replies will then be removed by moderators.



Rule 7- You can't intentionally annoy, mock, or harass other members.

If you intentionally annoy, mock, harass, or discriminate against any individual member, you will be removed.

Likewise, if you are a member, sympathiser or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people, and you were provably vocal about your hate, then you will be banned on sight.



Rule 8- All comments should try to stay relevant to their parent content.



Rule 9- Reposts from other platforms are not allowed.

Let everyone have their own content.



Rule 10- Majority of bots aren't allowed to participate here.



Credits

Our breathtaking icon was bestowed upon us by @Cevilia!

The greatest banner of all time: by @TheOneWithTheHair!

founded 1 year ago
MODERATORS
 

Hi

Currently I'm running a few servers at my home and I own a domain. I'd like to access those servers from outside my network (right now that happens through a VPN) but I don't know anything about A records and MX records and as I understand, that's what's needed to do this. So would there be a tutorial that explains this like I'm 5 years old?

top 9 comments
sorted by: hot top controversial new old
[–] [email protected] 3 points 1 year ago* (last edited 1 year ago)

On DNS you need A record if you have ipv4 only or A and AAAA records if you have ipv4 and ipv6.

You DNS outside you home servers? If you have dynamic IP at home you can't host DNS on home server.

You have only 1 IP? You need port forwarding on you home gateway to home servers if you use somerhing like SSH. If you want access to something web based you need proxy. NGINX for example.

How it exactly work:

  • Somewhere someone write youdomain.com in browser.
  • Browser ask local dns: who is youdomain.com
  • local dns ask another dns, and another and in one iteration request go to you dns. Or maybe some of dns have cached answer. But imagine that not.
  • You dns send answer youdomain.com is 111.222.333.444 for example. That is A record.
  • DNS work stop on that.
  • Browser send request to 111.222.333.444 with HTTP header "Host: youdomain.com" and some path. / or /something maybe.
  • Some balancer should get request and send in to right server in you home network.

UPD: don't show to internet something risky interfaces. Proxmox web panel or something like that. This is a real bad idea. For that type of services VPN extremely greatest. Send you DNS to public without protection not a great idea too. Including pinhole. I think you will get into some botnet already on the 3rd day of work.

[–] [email protected] 1 points 1 year ago

Hi there. We hope you're enjoying NSQ. Will you please edit your post title so that it contains a question? It's rule 1 in the sidebar. Thanks for posting!

[–] [email protected] 1 points 1 year ago (1 children)

A (and AAAA) records store your IP address, while MX record stores a domain for email servers to use.

[–] [email protected] 1 points 1 year ago (1 children)

So if I want to go to www.mydomain.com/pihole to go to my pi-hole instance, I would create an A record containing the internal IP of pi-hole and an MX one to configure the subdomain (www.mydomain.com/pihole), is that correct?

[–] [email protected] 2 points 1 year ago

No, the MX recourd is only for emails, and for the paths (like in your example), it's handled by your server.

Also, the subdomains are subdomain.yourdomain.com.

[–] [email protected] 0 points 1 year ago (1 children)

What is your end goal? What services are you trying to access from outside your network?

[–] [email protected] 0 points 1 year ago (2 children)

Lots of servers running. Main System is proxmox. I have an Ubuntu server running on that with docker installed which runs about everything (pi-hole, nginx, jellyfin, radarr, sonarr, (even) Firefox, and more). So end goal would be to go to www.mydomain.com/pihole to access pihole, to www.mydomain.com/jellyfin to go to jellyfin and so on.

[–] [email protected] 1 points 1 year ago

What I'd personally recommend is Cloudflare Tunnels, it allows you to lock down access to your services with an emailed code or other authentication method, as well as avoiding having ports forwarded to your services. It's an easy way to avoid port forwarding and not have to worry about whether all the services you're hosting are 100% secure, since you'll be exposing them to the internet.

The downside is you're routing all your traffic through Cloudflare.

[–] [email protected] 1 points 1 year ago

I’d recommend running pihole.yourdomain.com or jellyfin.yourdomain.com instead. I think using yourdomain.com/service might cause you some problems, that’s why i heard other recommend use subdomains instead.