Any ports used in docker will be open on your computer and accessible to any device in your network.

However, to open up a port to the internet, you’d have to do port-forwarding on your router. If you haven’t done that, any incoming connections will just be dropped at the router-level.

That’s actually so cool and the more I think about it the more it’s making me really want to host my own Lemmy instance. Can I ask what sort of hardware resources you’re running it on?

I’m reading it so I’d say it works!

They meant pinging your server from another device, I assume.

What error(s) do you get when you try to SSH into your server?

By “can’t access containers”, I assume you mean via devices you’re trying to connect to the server with? Can you still access the stuff you’re running in the containers directly on the server via localhost?

I’ll echo what the other commenter’s have said and you need to give us more info. “I added two containers” is pretty much useless if that’s all we have to go off of to start troubleshooting. More details on what exactly you did, any troubleshooting steps you’ve already tried, what specific errors you get, etc.

I can only assume it’d be a bridge for Nextcloud Talk.

I was having issues getting my Android device to use my local DNS server over VPN, what worked for me was setting it up through RethinkDNS. There’s a setting to prevent DNS leaks by capturing all traffic on port 53 and directing it to the DNS server you set. It doesn’t feel like an elegant solution but hey, it works.

Note, you’ll have to make sure your private DNS setting is off, in the internet section of the system settings.

From a quick Lemmy search, I’ve seen Njalla and 1984.hosting being recommended for these kinds of uses.

I’d rather not open ports I don’t have to. I don’t see why I’d have to open a port when Unbound works on my local network and I have access to my local network via Wireguard. I can access a whole slew of services through that one Wireguard port, why wouldn’t Unbound work?

Thanks anyway for trying to help, bud.

I could do that, but I want to avoid opening ports on my router’s firewall apart from the one necessary for Wireguard. I can access all my other stuff through Wireguard, but I can’t wrap my head around why it seemingly can’t access Unbound on the local host.

The reason for the VPN is to have access to my Unbound DNS on my phone from anywhere, not only my local network. If I just wanted to configure the DNS on my local network, I’d set up static IP for my network in Android’s settings and input the DNS server manually. This works fine when I set it up, but like I said I want to use Unbound on my phone anywhere via Wireguard.

I’m not sure what’s the second thing you want me to clarify! Sorry for the confusion, I appreciate you trying to help out :)

Android doesn’t let me add an IP address under private DNS, it needs to be a domain (like dns.quad9.net rather than 9.9.9.9).

I tried adding a quick DuckDNS domain to my reverse proxy towards port 53, where Unbound is listening. It works, as in I can nslookup using the DuckDNS domain on my desktop (or on my phone when not connected to Wireguard) but if I try to set that domain as my private DNS on Android it says it can’t connect, whether or not I’m on my VPN.

I tried this, as well as manually editing the DNS servers on the client side, but whether I use my host’s private local IP or my host’s docker interface IP it doesn’t seem to work.

I think you misunderstood part of my post, because there’s only one VPN tunnel, from the WG client on my phone to the WG server on my laptop.

I want my phone to use the Unbound DNS server, which is hosted locally on the same laptop that runs my Wireguard server.

EDIT: Note, I don’t want to setup the DNS router-side via DCHP because I want to use Unbound to block a bunch of stuff that my roommates use, like Facebook.

When connected through wireguard can you access anything on the local network?

Everything works as expected with Wireguard otherwise, I can ssh into my server or my desktop, and access the other things hosted on my server (although these are all through Docker, which is why I suspect container isolation to be an issue).

Does this issue also happen when you’re on another network and vpning back?

Yup, same issues whether I’m on the local network, the WiFi at work, or on LTE.

I read this, thought “that’s gotta be something you can do in Termux”, searched it, and sure enough; that’s something you can do in Termux.

I can’t speak for it as I’ve never used it (I don’t have any spam call issues, fortunately) but SpamBlocker sounds like it would fit the bill. It’s FOSS, available on F-Droid.

They do have online features that contact APIs, but they release a build without internet privileges if you so desire.

Let’s Encrypt is run by a non-profit (Internet Security Research Group), they list their major sponsors and funders on their website.

According to their stats page, Let’s Encrypt’s certificates are used by around 500M domains.

A lemmy instance hosted behind Tailscale would be unable to federate, no?

I’m not the person you replied to, but they say in their comment they use Get RSS Feed URL.