Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

One option would be to use Cloudflare Tunnel [1]

You would run a program on your system which connects to Cloudflare. The traffic goes to Cloudflare first, and then gets forwarded to your system.

[1] https://blog.cloudflare.com/tunnel-for-everyone/



I keep being amazed how the self-hosting community loves to recommend "just send all your traffic through cloudflare". It's the antithesis of self hosting.


Cloudflare Tunnel can be a step in the right direction. That said, I maintain a list of selfhosted alternatives here:

https://github.com/anderspitman/awesome-tunneling


Nice, thanks for the list! Do you have any recommendation how to tunnel from a VPS to my home server if I'm already using Tailscale? Just use any old reverse proxy like Nginx/Traefik/Caddy?


Yep, exactly. Just use the Tailscale IPs or domains in your reverse proxy config.


Caddy supports .ts.net domains and will pull the cert from the running Tailscale daemon on your system. And even better integration is coming soon, Tailscale is working on things.


Sounds great. I'm not in a rush, so maybe I'll just wait until Tailscale releases whatever they are working on.


I'd say that "self-hosting" is defined by where your processing and data reside, who controls these.

But if you want to be accessible to the outside world, you need to direct your traffic outside; I don't see a substantial difference between routing your traffic through Cloudflare, Comcast, Equinix, or any other major connectivity provider.


> I'd say that "self-hosting" is defined by where your processing and data reside, who controls these.

And I would mostly agree so long as you're the only one who has access to said data. There will always be "ISPs", of sorts, that your data needs to pass through; that's simply how the internet works.

The nitpick about Cloudflare is that they are starting to act as a gateway to the internet. Maybe you can turn their fronting off if they start giving you trouble, or maybe your registrar also runs behind Cloudflare. Anyway, bit of a philosophical discussion how much power to vest in one company.

The real trouble is that their main offering involves giving them the private keys to your traffic. I don't know if that's also the case with this Tunnel product, but at least for regular websites, then they process your actual data, as with the bank example (a colleague at said bank was not happy).


Cloudflare tunnel even lets me host a vanity website (potateaux.com) from a NAT'd LTE uplink using a regular phone hotspot. Game-changer, especially given the price!


I like ngrok




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: