I’ve migrated about half of my services off of cloudflare DNS proxy. Guess which half still worked this afternoon. (Self hosting pangolin with CrowdSec as replacement). I wasn’t even using the cloudflare tunnel. Just their proxy for some bot mitigation.
Can’t speak to how difficult it would be to do after the fact. My guess is just adding in the lines in the docker compose.
As for CrowdSec, it seems to run in the background and I haven’t looked at it much. I’ve triggered it a few times and locked myself out. So I’ve added my home IP to the whitelist (it’s running on a VPS). It also locked out my uptime Kuma so I whitelisted that too.
still hard. most projects still CDN online instead of packaging into a single application.
it’s one of the most infuriating things about self-hosting. so I made my own self-hosted CDN and have rewrite rules that replace most public cdb domains and reroute them to my own local.
it would be great if I could just have something in the middle that would download once and cache locally on request, but it’s effort that would be taken from my time afk.
I remember the day I went why are we all selfhosting and still relying on a site like Cloudflare?.
I’m glad I agreed with me on it.
this “me” character is so smart, aren’t they
Oh, he’s the best. Keeps me out of trouble, that one.
I used Cloudflare tunneling for a while, then started to have similar thoughts. I’m off Cloudflare now.
I’ve migrated about half of my services off of cloudflare DNS proxy. Guess which half still worked this afternoon. (Self hosting pangolin with CrowdSec as replacement). I wasn’t even using the cloudflare tunnel. Just their proxy for some bot mitigation.
been really enjoying pangolin so far! i got scared and ended up not installing crowdsec.
am i missing out? how hard would that be to add after the fact?
Can’t speak to how difficult it would be to do after the fact. My guess is just adding in the lines in the docker compose. As for CrowdSec, it seems to run in the background and I haven’t looked at it much. I’ve triggered it a few times and locked myself out. So I’ve added my home IP to the whitelist (it’s running on a VPS). It also locked out my uptime Kuma so I whitelisted that too.
I use it for DNS and domain hosting, but that’s it, none of their proxying stuff.
Why though? You have other options less detrimental to the internet than using and supporting them…
Domain registration and renewal is at cost, and DNS is free. I’m not sure what’s detrimental to the internet about that…
My paid hosting is elsewhere, so they’re not making any money off me.
For me it’s because it’s free, easy to use, and supported by ddclient.
still hard. most projects still CDN online instead of packaging into a single application.
it’s one of the most infuriating things about self-hosting. so I made my own self-hosted CDN and have rewrite rules that replace most public cdb domains and reroute them to my own local.
it would be great if I could just have something in the middle that would download once and cache locally on request, but it’s effort that would be taken from my time afk.
By self-hosted you mean you have hardware geographically distributed? Like… boxes at friend’s houses or…?
no, self-hosted meaning it’s all on the local network. it’s just a folder on NAS that has a local DNS route to it.
rewrite rules that rewrite the HTML and replaces “cdn.stuff.com” to “mycdn.local.net”.
so not a true CDN, but a mock.