Hey is there any alternatives to CloudFlare reverse proxies? I want to hide my server IP but not share everything with CF…

  • tal@lemmy.today
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    7 months ago

    I’d probably use a VPS myself.

    I seem to recall db0 saying that lemmy.dbzer0.com is behind some sort of reverse proxy. I assume that they’re in the same boat as OP.

    looks

    $ host -t a lemmy.dbzer0.com
    lemmy.dbzer0.com has address 51.77.203.116
    $ whois 51.77.203.116
    [snip]
    role:           OVH Technical Contact
    address:        OVH SAS
    address:        2 rue Kellermann
    address:        59100 Roubaix
    address:        France
    admin-c:        OK217-RIPE
    tech-c:         GM84-RIPE
    tech-c:         SL10162-RIPE
    nic-hdl:        OTC2-RIPE
    abuse-mailbox:  abuse@ovh.net
    mnt-by:         OVH-MNT
    created:        2004-01-28T17:42:29Z
    last-modified:  2014-09-05T10:47:15Z
    source:         RIPE # Filtered
    
    % Information related to '51.77.0.0/16AS16276'
    
    route:          51.77.0.0/16
    origin:         AS16276
    mnt-by:         OVH-MNT
    created:        2018-03-07T09:24:45Z
    last-modified:  2018-03-07T09:24:45Z
    source:         RIPE
    $
    

    I don’t know if that’s a VPS, but looks like they’re using OVH.

    • Pup Biru@aussie.zone
      link
      fedilink
      English
      arrow-up
      3
      ·
      7 months ago

      a reverse proxy these days is pretty much just a requirement of any dynamic service. they often run on the same host as the software

      • tal@lemmy.today
        link
        fedilink
        English
        arrow-up
        2
        ·
        7 months ago

        Aight, but db0 had something about it obscuring the server location, IIRC.

        • Pup Biru@aussie.zone
          link
          fedilink
          English
          arrow-up
          1
          ·
          7 months ago

          it’s possible, but that would seem… odd… for such a large and tech-savvy instance. there’s a lot of reasons why this isn’t a good idea, and very few technical reasons why it is

          my guess is that it’s less about obscuring server location for privacy reasons as is the implications in this thread, and more about handling changes cleanly or something like that - in which case, sure it obscures the server location but more that it makes the server “location” (or hardware, etc) irrelevant and fungible