[06:43] hi magespawn inetpro superfly thatgraemeguy paddatrapper thatgraemeguy theblazehen and others [06:47] Hey Kilos [06:50] hi Kilos [06:54] hey Kilos [06:58] good evening [07:01] Good morning/day/afternoon/evening/night! Happy Monday! Hope you all have a wonderful new week! [07:02] ty inetpro and ditto for you sir [07:10] chores time [07:30] Good morning. [08:05] good morning [08:08] Hi Sicelo [08:08] how are you? [08:12] 'lo 'lo 'lo [08:18] Hi thatgraemeguy, Sicelo how are you? [08:18] I mean I'm good, how are you? [08:20] i'm well, thanks [08:25] Sicelo: Good to read. Did you have a good weekend? [08:27] brb [08:29] yes thanks. weekend was absolutely fine, besides the wind, which i did not like at all [08:29] yourself? [08:35] morning all [08:38] Given that I have very little recollection of the past few days, I would say it must have been a very good weekend, Sicelo ^__^ [08:38] Morning chesedo [08:41] :p [09:08] Him Kilos [09:08] Busy morning.. Wow [09:42] hey back [09:56] Mornings [10:09] * andrewlsd enters lurk mode [10:17] hi andrewlsd, magespawn [10:24] hi theblazehen === MaNL is now known as MaNI [11:03] hmm... [11:03] It annoys me when products insist on having an ssl cert :/ Don't they know that some people do it with a reverse proxy... [11:11] no greeting tsk [11:11] :P [11:11] hi jerit [11:11] theblazehen: I legit didn't know that a thing such as reverse proxy existed until I saw your comment now [11:11] you must greet first when im away [11:12] hi jerit [11:13] everyone else lurks till you ping them [11:16] jerit: I'm running nginx as a reverse proxy inside my network, as it looks at the Host header, then does a DNS lookup on internal DNS and routes correctly. Then I use caddyserver.com for ssl termination with Lets Encrypt. Use the seperate nginx as caddyserver processes the config at startup = you can only define a group of upstreams, but can't change them based on dns [11:16] So public internet -> caddy -> nginx -> the service you want [11:17] https://smokeping.home.theblazehen.com for example [11:19] theblazehen: I use the same (this image https://github.com/jwilder/nginx-proxy) for my docker services on home server [11:20] chesedo: I saw that when I was looking before. You need to do add the env vars for each new host though? [11:22] chesedo: https://linx.home.theblazehen.com/caddyfile.ext and https://linx.home.theblazehen.com/nginx.conf [11:23] Also, caddy requests ssl cert as soon as a request for a hostname comes in. So, very simple example: [11:24] theblazehen: yes, env for each container that you want to proxy [11:24] O_o I think this is all over my head right now [11:24] theblazehen: guess caddy is way faster too? [11:24] I can run `docker run --name testdockernginxthing nginx`, then go to https://testdockernginxthing.home.theblazehen.com [11:24] chesedo: Supposed to be [11:24] HTTP 2, written in go etc [11:25] I actually just ran the docker command [11:25] Check it out [11:25] `lxc exec dockerHost -- docker run --name testdockernginxthing nginx ` literally all I did [11:26] wow, will do... gotta go for now [11:26] cheers [11:29] * theblazehen is planning on having caddy and nginx running as a caching reverse proxy on my dedicated server. [11:30] Home host has 32 GB RAM, 64 GB SSD cache and 3 TB usable storage, pretty good i5, but a 1 mbit upload speed [11:31] Dedicated server has 2 TB HDD storage, only 8 GB RAM, some xeon processor but a 500mbit up / down link, unmetered [11:33] And home host has a lot lower latency [11:35] Going Desktop (LAN) -> router (running pfSense) -> bridge on pfSense (I bridge the physical interface for servers with the openvpn L2 VPN) -> caddy -> nginx -> service in less than 0.7 ms [11:35] Compared to a 213 ms RTT to my dedicated server [11:36] * theblazehen needs a bigger SSD. HDD light is on a large amount of the time [11:41] $ (lxc list | grep RUNNING; lxc exec dockerHost -- docker ps | grep -v CONTAINER; echo removes the header &>/dev/null) | wc -l [11:41] 33 [11:45] One annoying thing is docker images which insist on using a specific port internally. Since I don't use the docker port forwarding I'm stuck with the internal port [11:46] * theblazehen needs to get my gitlab docker building working [11:57] * andrewlsd goes to look at caddyhost.com [12:03] andrewlsd: You mean caddyserver.com? [12:05] * theblazehen would like to get http://rt.fm/, and put man pages there [13:47] who knows how to find dog fighting websites on the deepweb? [13:47] I'm thinking I might be able to find my dog if I could find such websites [14:18] theblazehen: yes. [14:41] cheerio all. hope it's a quiet evening o/ [17:04] chat later all [17:11] ai! [17:34] https://rachelbythebay.com/w/2014/10/27/ps/ huh. 2nd time I found something helpful on this blog. Highly recommend reading it all [17:52] hey guys [17:52] hi cal_py [17:52] wb [17:52] its been a while lol [17:53] yeah where have you been [17:53] hi MaNI [17:53] hi [17:54] how has everyone been? [17:57] we all just carry on [17:57] how are you? [18:05] what does PPA mean? [18:09] good good thanks Kilos started a new job, geting to do cool things with python EVENTUALLY!!!!!! [18:09] great cal_py [18:10] have you been to AUS? [18:10] leaving on the 30th [18:11] booking flight tomorrow so hope the rand doesnt drop again tonight [18:14] aish!!! [18:14] is ganna be lakka thou [18:14] yeah [18:14] no touring, just visiting my girls [18:15] be nice to be pampered for 3 months [18:15] hehehe [18:15] i spose ill come back fat as a pig [18:37] hmm... [18:38] evening superfly inetpro [18:38] my two ballies [18:42] wb ra1v3n [18:47] hi kulelu88 [18:47] Hi [19:01] Hi [19:01] * superfly is in bed reading on his Kindle [19:29] night all. sleep tight [19:29] see you tomorrow